I am a Founder and Managing Member of STACKTITAN, LLC, a consulting company that specializes in offensive, adversarial security testing including Adversarial Simulation (Breach, Red Team), Penetration Testing, Vulnerability Assessment, Web Application and Mobile Assessments, Wireless Assessments, Social Engineering, Physical Testing, and more. My role includes both day-to-day operational management, strategic business development, and technical execution of engagements.

In addition to the tasks described in the Principal Security Consultant description below, I have assumed direct HR responsibilities of up to 10 security consultants. Additional focus is on mentoring and career development or direct reports, practice development, project scoping, project oversight, customer relationship management, presales activities, candidate screening, and other tasks as defined.

I work for in the security assessments team performing network and wireless vulnerability assessments and penetration tests and social engineering campaigns utilizing a number of different commercial and open source tools including: - Nmap - Nessus - NeXpose - Metasploit Framework - Lair Framework - Blacksheepwall - Aircrack - Burp - Kali - John the Ripper - Hydra - rcrack - oclHashcatI'm proficient in Python, Go, and Java. I have developed, contributed-to, and released a variety of proprietary tools used for process optimization and project quality enhancement as well as open source tools used to assist with a various pentesting tasks. https://github.com/lair-frameworkhttps://bitbucket.org/dkottmann/Furthermore, I've presented multiple industry conferences including Defcon, BSides Las Vegas, BSides Iowa, BSides Tampa, Blackhat Aresenal, Nebraska Cyber Security Conference, and local Omaha ISC2 chapter meetings.

I own a small, home-based, start-up company named Goal Fitness and Nutrition. Located in Omaha, NE, we offer personal training and nutrition coaching services to clients in both an online and in-person environment.Our commercial-quality fitness studio provides our ISSA certified fitness trainer the access to hundreds of weight lifting and cardiovascular exercise options in a comfortable, intimate, non-intimidating setting.Our services have helped dozens of individuals lose weight, gain muscle, and feel better about themselves.Although I've nearly completed my ISSA Specialist in Performance Nutrition certification, my role is mainly business related. I manage the finances, marketing and advertising, purchasing, staffing, and IT (including web design and web development using PHP, HTML, CSS, and MySQL).

I currently work as a Security Analyst at ACI Worldwide - a global competitor in developing payment software.My role covers a wide variety of disciplines including:- Forensics- Risk assessment (vulnerability scanning, penetration testing)- Key lifecycle management (TG3/TR39, Visa PIN)- Standard/Policy review- Software tool development for automation and reportingKey accomplishments include:- Creation of Java web application (utilizing MySQL, Java, Rich Faces framework)- Development of Perl tool to reduce recurring forensics investigation from 4+ hours to roughly 15 minutes- Acting as Key Administrator solely responsible for TG3/TR39/Visa PIN compliance- Additional contributions aiding in remaining PCI compliant- Completed CEPT exam requiring vulnerability detection, exploit development, and exploitationCertifications Obtained:- Certified Expert Penetration Tester (2011)- Certified Ethical Hacker (2009)- Certified Penetration Tester (2009)Skills and Tools:- Numerous programming languages (Java, Perl, PHP, C++, HTML, SQL)- Network and web application vulnerability testing- Nessus- Splunk- Metasploit- vCM (formerly SCM/Configuresoft)- Atalla AKB/Variant NSPs

ACI worldwide provides payment engine software for processing ATM, POS, credit card, etc. transactions and providing back-end settlement and real-time fraud detection.I worked as an Application Engineer in ACI's newly created on-demand service. My role included providing second level support for the applications and systems as well as implementation and testing of the systems.I act as the primary second level support person for our retail customers running ACI's Retail Commerce Server product. The system is built in an HA environment running AIX 5.3. Additionally, I acted as the primary support person, deployer, and administrator for all on-demand customers' WebSphere Network Deployment application servers.

As an ASTech Consultant I provided onsite consulting services to ACI customers who purchased ACI's Base24-eps product and chose to run it in-house. The support often involved Unix troubleshooting, Perl, shell, and Python scripting, CTree database administration, product implementation, testing, and support, and Java and C++ development.

I designed, develop, and maintained the company website using HTML, PHP, and Perl. I also performed other IT related tasks involved with managing and maintaining the computer systems and company network.

As a Geospatial Interface Designer I created Java applications for managing spatial satellite photography as well developed modules using PHP, Perl, HTML, and MySQL to integrate with current geospatial applications for the Army Corps of Engineers.