Teach computer science courses

· Provide technical guidance to developers on discovering and remediating software coding security vulnerabilities for over 350 applications in the capital markets line of business. · Review findings with application teams for static Analyzer (SAST), Dynamic (DAST), and Software Composition Analysis (SCA) and dispositioning false positives for application teams.· Performs vulnerability management and reporting for over 350 applications.· Partner with architects and application development teams in secure software design.· Provide the Secure Software Group (SSG) in Enterprise Information Security (EIS) feedback on information security-related processes, tools, and procedures.

[Provide Application Security support for the Dept of Veterans Affairs MHV program. ] · Responsible for application security and security architecture for the MHV program. · Fix bugs/vulnerabilities in the MHV application.· Provide Analysis and vulnerability management for Fortify Static Code Analyzer (SCA) [SAST], HCL AppScan [DAST], and penetration tests. · Provide metrics and key performance indicators (KPI) for application security on the MHV project.· Perform web penetration testing for security compliance.· Assisted in risk assessments using the Risk Management Framework (RMF).· Conduct software security evaluations using DISA STIGS.· Provide security architecture guidance to ensure applications adhered to policies, standards, and guidelines such as NIST 800-53, NIST 800-190 (docker containerization), and FIPS. · Created and Reviewed Threat models for applications.· Modify and create Groovy scripts in Jenkins to integrate security functions.· Develop python scripts to evaluate software compliance.· Scan applications with Fortify SAST tool, OWASP ZAP, and Twistlock.· Provide guidance to development teams on remediation for SAST, DAST, and penetration test findings.

[Full Stack Developer responsible for application development and Information Assurance (IA)/Cyber Security in support of the Marine Corps Logistics Command (MARLOGCOMM).]· Full Stack developer for MARLOGCOMM (Marine Corps Logistics Command) using Java, Angular, Bootstrap, Spring, JDBC, and Hibernate.· Responsible for ensuring application compliance with DISA Application and Development Security Technical and Implementation Guide (STIG).· Perform risk management analysis and provide mitigation solutions in accordance with DoDI 8510.01 and NIST Instructions.· Implemented coding standards for development team.· Perform manual code reviews and automated code reviews using Fortify.

[Technical team lead / Security Software Engineer responsible for application development and Information Assurance (IA)/Cyber Security for AMPS, Fusion Center, COPA, and IBMS projects in support of the Defense Logistics Agency (DLA).]· Full Stack developer building enterprise applications using Java using Spring, various JavaScript libraries, JSTL, JDBC, and Hibernate.· Test applications for IA (Information Assurance) compliance which includes web penetration testing, vulnerability scanning, and conduct manual and automated code reviews, review security threats applicable to application development.· Perform risk management (RMF) analysis and provide mitigation solutions in accordance with DoDI 8510.01 and NIST Instructions· Responsible for ensuring application compliance with DISA Application and Development STIGs.· Use Static Code Analyzers (FindBugs and Fortify) to evaluate source code and provide suggestions based on findings.· Create Threat models for applications.· Develop Restful webservices using JSON and SOAP based Web Services.· Led the decommissioning effort of 5 Legacy applications.· Technical Lead for Fusion Center Enterprise Data Warehouse (EDW) migration project.· Develop Integrated Data Sheet (IDS) web application in support of Fusion Center using Spring MVC, JSTL, HTML5, JavaScript, CSS3, and JDBC.· Develop PL/SQL stored procedures, tune queries using indexing, partitioning, database hints, and materialized views. · Create complex queries for use in Business Intelligence Dashboards in COPA and AMPS.· Develop Enterprise Architecture (EA) Diagrams using ARIS meeting DoDAF requirements. Created tables, views, synonyms, and materialized views.

Developed NALCOMIS (Naval Aviation Logistics Command Management Information System) readiness and maintenance software in support of the Naval Tactical Command Support System (NTCSS) using Java EE.* UI development using GWT(2.0.3) with MVP pattern.* backend development using Hibernate 3, JPBM on JBOSS Application server.* Develop template applications for other developers to model future GWT work.* Develop Smart Card (Navy CAC) authentication for web application using PKI.* Used Apache Maven and Hudson CI Server to maintain builds.* Implemented validation with JSR-303 compliant validator.

· Develop Applications using Java, JSF, Spring, Hibernate, GWT, PERL, and Python. · Developed API web services using SOAP and JSON.· Maintained Named Entity Extractor using GATE to read unstructured text to extract people, locations, and organizations.· Wrote a text summarizer that creates a brief text abstract using Java.· Assisted in the development of a deduplication algorithm to find duplicate text.· Database modeling that includes physical and logical models.· Created data dictionaries and other meta data repositories.· Develop machine-learning algorithm to make recommendations.· Develop Naïve Bayes Classifier using PERL that included term replacement based on complex taxonomy.

• Contract position as part of a team that developed technician routing and scheduling software using C#.• Assisted in the development of a slot based and time based scheduling algorithms.

• Develop Document Management System (DMS) using Java (J2EE).• Develop Business Process Management application (BPM - Workflow) and web interface to connect to web based Document Management System. • Architect solutions using Java (Java SDK and Java EE) with Hibernate and Spring.• Created Federated architecture to connect disperse systems using Service Oriented Architecture (SOA) using Web Services Technology (SOAP, WSDL, C#).• Functional and performance QA work for enterprise Internet-based Document Management System.• Executed manual and automated testing of J2EE-based applications.• Developed Records Management software using J2EE utilizing Spring with Hibernate.• Developed asp.net web applications using C#.

• Adjunct Faculty Instructor at ECPI College of Technology.• Instruction for technical courses: Java Programming (beginning and Advanced), Cold Fusion Programming, Solaris 8 Unix, Windows 2000 Professional, ASP.NET, C#, Internet Programming with Active Server pages (ASP), Red Hat Linux, Data Link Fundamentals (TCP/IP), Intro Programming.• Curriculum development for Cold Fusion and ASP.NET.