http://www.technosecurity.us/The Techno Security & Digital Forensics Conference brand has grown into one of the most important resources for corporate network security professionals, federal, state and local law enforcement digital forensic specialists, and cybersecurity industry leaders from around the world. The purpose is to raise international awareness of developments, teaching, training, responsibilities, and ethics in the field of IT security and digital forensics.

Manage and create vision for Amazon’s global Consumer, Digital, and Other (CDO) Vulnerability Management Program, including: • All Amazon technical assets, 40+ Amazon subsidiaries, and all worldwide customer fulfillment centers • Global team of 14 Security Engineers, TPMs, and Analysts (Seattle, Austin, Charlotte, and Dublin) • Talent management and global expansionManage day-to-day global operations of the Vulnerability Management Team, including: • Vulnerability scanning and patch management across all of Amazon • Overseeing coordinated campaigns to drive remediation • Responsible for vulnerability reporting and metrics to service owners, key stakeholders, and upper/senior-management • Ongoing communication and remediation guidance to service owners and all management regarding critical and 0-day vulnerabilities • Work with other teams to create proactive patching measures that disallow vulnerable software to be used • Vulnerability/Exploit research by Security Engineers based on various threat models and threat intelligence sources • Technical and process innovation toward proactive remediation efforts

• Responsible for all areas of Information Security for Shop.com and Market America’s global e-commerce presence across multiple web sites, including the United States• Responsible for security posture of Shop.com and Market America, including four corporate office locations, several data center locations, and satellite offices in various countries• Certified FAIR Risk Analyst• Established FAIR (Factor Analysis of Information Risk) Framework for enterprise-wide formal risk analyses• Responsible for Conducting FAIR-based analyses for various risk scenarios• Head of Incident Response team• Primary Technical Incident Responder• Responsible for all aspects of PCI-DSS for the IT department, including design/architectural solutions, oversight, guidance, and auditing (certified PCI-ISA as of May, 2011)• Responsible for all log analysis/event correlation relating to information security. This includes all relevant server and application logs, SIEM servers, IDS/IPS logs, etc.• Responsible for all web application and network infrastructure security assessments, ranging from vulnerability scans to full penetration testing• Periodically reassigned to perform web application assessments for Shop.com and Market America-associated projects and ventures

Helping the Charlotte ISSA organize conference and educational events, manage memberships and general board duties and representation.

• Managed information security for RealEstate.com and Tree.com business units (at least 6 business verticals with multiple domains/web sites per business line)• Conducted all web application assessments, ranging from vulnerability scans to full penetration tests • Periodic ASP.NET code (C#) analysis for security issues• Implemented information security as core parts of the Agile SDLC (Software Development Lifecycle)• Created information security awareness presentations and programs to educate and inform both technical and non-technical internal audiences• Managed and developed a senior team to research technological approaches, architecture designs and products for emerging business concepts. • Evaluated architectural implications of emerging technologies• Designed and produced prototypes to offer functional examples applicable to new and existing business ideas and issues• Increased the efficiency of the entire technology team through proactive software design• Organized mentoring relationships between senior members and more junior members of the team• Created RealEstate.com home search application for iPhone and Android phones using the iUI JavaScript technology• Created the RealEstate.com HouseWatch Twitter Bot (an interactive bot designed for retrieving comprehensive demographic/census data for cities, home valuations, and various mortgage calculators)

• Built and managed a team of developers, DBA’s, and project managers from 2 to 30+ people over the course of 2½ years to manage the growth of the Realestate.com site/brand• Evaluated architectural designs and plans to ensure consistency, code reuse, efficiency, and scalability• Guided architects in design concepts using a balance of existing and new technologies• Minimized turnover and provided high efficiency within the development team• Managed relationships with business, senior management, and the technology team• Served as interim Vice President of Real Estate Technology responsibilities from 7/2006 – 6/2007 until business reorganization could occur• Assisted with SDLC decisions which included taking the group from a traditional waterfall development cycle to piloting Agile/Scrum for the entire organization

• Migrated an existing JSP/J++/SQL Server product to a classic ASP-based site• Created new customized real estate web application products for the real estate team• Made architectural decisions regarding the entire real estate web platform (includes all tiers)• Created and maintained a customized lead management extranet for real estate brokers/agents• Created the branding technology – known as ‘AXX’ – that was used through the entire organization. This technology save the company millions of dollars and increased customer satisfaction by increasing the availability of various loan and real estate applications• Evaluated architectural and code-level design changes to maintain efficiency and scalability of legacy technology that was no longer supported. These and subsequent changes resulted in the use of the technology being extended 10 years beyond what was thought to be its useful lifespan, with increased scalability, efficiency, and a better end-user experience.

• Created and maintained customized extensions to the Silknet CRM package• VB COM development for facilitating communications between a Java-based web tier through the Silknet CRM package to a SQL Server back-end• Mentored less senior developers• Streamlined the flow between web design, front-end coding and back-end development• Offered cross-team development capabilities between the multi-tier development teams• Assisted with architectural decisions regarding the web platform

• Rewrote a legacy Fox Pro front/back-end system in Visual Basic/SQL Server• In charge of software development, reporting, project management, DBA, and software developer management duties• Saved the company $150,000+ annually in maintenance costs for the legacy system• Vastly increased efficiencies in internal data management over existing legacy application• Created an interface between an internal Visual Basic application and mainframe credit card processing systems in remote locations• Assist in the removal of a Cease and Desist order levied by the OTS (Office of Thrift Supervision) • Established the bank’s credit card division as being Y2K compliant• Managed relationships with federal government (OTS) representatives to ensure compliance

• Offered expertise in the technical support for Hypercom credit card terminals• Improved efficiency in call center support calls via the programming of widgets to aid in calculations and customer statement issues• Replaced 15,000 pages of printed material per representative’s desk with an efficient VB application utilizing Windows Help Files and an Access database for the management of all the printed material. This alone resulted in a $100,000/year savings in printing/reproduction costs• Creating and managed all software development for the training department