This position has been had me concentrating on wireless/RF testing, hardware/firmware reversing/testing, and some ICS/SCADA work thrown in for fun.- Work with clients to design red team campaigns to optimally test their security as accurately and efficiently as possible.- Monitor current infosec related news to keep up on recent trends/attacks/techniques.- Perform network-based and physical testing (redteam/pen testing).- Automated attacks for testing of controls.- Built ICS lab for testing / simulations.- Assist in escalated needs for incident response, forensics, and research as needed.- Provide consultation/advice to other teams as needed.- Provide mentorship to team members, and other junior employees.

- Performs regular vulnerability assessments and penetration tests against company systems. (NeXpose, Metasploit, nmap, various other OS software and custom scripts).- Handles processing of "problematic" legal intercept/CALEA/FISA requests from Law Enforcement Agencies local to national.- Regularly monitor internet social media for "chatter" relating to the specific events to anticipate "hacktivist" activity.

To switch things up - I brought years of video system knowledge to a new role that worked with my security background. - Implemented network analysis/analytics tools to detect incoming problems as well as assist in capacity planning. Coded custom scripts for report output. - Implemented Damballa for botnet infection detection that analyzes DNS resolutions. The solution provided a low-weight/cost detection method that also protected the privacy of our customers. Coded custom scripts for report output. - Assisted in implementation of centralized configuration management system for the network team (HP-NA) including coding custom "Drivers" for unsupported network hardware. - Implementation of a WAF system (Imperva) to assist in monitoring incoming potentially problematic traffic to hosted websites. - Implemented a SIEM for issue correlation within the subnets that include customer PII for PCI purposes (HP ArcSight). - Tracked, monitored and assisted in banning/blocking cloned cable modems from the network. - Worked on several assessments/bake-offs of security/configuration management products for the enterprise. - Provided network/system security support to the 2012 Republican National Convention in Tampa, Florida. Bright House Networks was the official data/voice provider supplying data and voice services to two huge convention locations in downtown Tampa, including security to detect incoming attacks on the actual RNC networks as well as other targets. - Worked with many law enforcement agencies (from FDLE to FBI) in investigations where mandated by legal documentation (FISA/CALEA/misc).

Brought years of Unix systems experience to digital video projects. - Overhauled VOD (video on demand) system, rolling out 128 unix servers to 9 different locations, providing movies on demand to 850k customers in the Tampa Bay area. This highly redundant/high-availability system was a move towards centralization, improving availability over the previous system spread over 65 locations/independent-servers. - Worked to create network based redundancy where ever possible to create a video services disaster recovery path -- especially handy in a hurricane prone area. - Lead engineer on all interactive television initiatives (interactive news, game shows, and interactive billpay/info services), Local / News On Demand services and StartOver. - Rolled out Caller ID on TV locally and in remote roll outs in Bakersfield CA, Indianapolis IN, Birmingham AL and Orlando FL. - Assisted in security incidents in multiple remote divisions for forensic analysis, and provided recommendations for containment and prevention of future issues. - Implemented multiple VPNs and monitoring systems to confirm that customer information was kept confidential and only used as per PCI-DSS compliance and Cable Privacy Act requirements. - Assisted in VOIP break/fix situations and remote division Video issues. - Mentored junior admins and engineers

10East was a company that provided data and plan management for Tier 1 railroads (such as CSX). We managed and digitized approx one million physical plans, and made them available for reproduction via a website viewable to the public internet (plans were only available to our customers, though). This system also provided project management for our customers as needed.We also worked with the FRA and several customers to automate the process of checking the rail lines for problems. Previously, it was accomplished with a mountain of papers filled out in the field. 10East replaced this with PDAs with custom software to input the data, and then the PDAs were plugged in to a modem and would upload in information. Later, the reports and information would be available via our web system.