Christopher Martin Email & Phone Number

San Francisco, California, US

Evaluated several SIEM products and ran proof of concepts to select a code first detection pipeline.Evaluated several WAF solutions and ran proof of concepts to select a WAF and integrate it in application monitoring pipeline.Migrated existing SIEM from unmanaged SumoLogic to Infrastructure as Code managed panther.io, using Terraform, SaltStack, Snowflake.

San Francisco, California, US

Develop and deploy integrations for Okta, Duo, osquery, and auditd logs to be ingested into Splunk using Terraform and AWS/S3.Created a standard for reusable terraform modules for use across the security organization.Developed several terraform modules for deploying security resources and automating ingestion of data into Splunk and ELK detection.

San Francisco, California, US

Automated file integrity management practices using osquery, python, and AWS lambdas and step functions.Created architecture documents for network monitoring and intrusion detection systems for both office networks and AWS production cloud network.Deployed network monitoring solution using a combination of corelight hardware/aws virtual images and open.

New York, New York, US

Responsible for the configuration and maintenance of Tenable Nessus and Rapid7 Nexpose security scanning tools. Developed custom software in python to sync assets and systems from in-house CMDB tool with both scanning products to ensure full coverage of out network both from an internal and external viewpoint.Responsible for managing and coordinating.

Portland, US

As an application security engineer at Simple, I am responsible for a variety of tasks including penetration testing, incident response, static code analysis and developer outreach. My penetration testing duties include assessments of backend REST services, front end web applications (both traditional and modern SPA style applications) and mobile.

Beaverton, OR, US

Responsible for performing penetration tests against mobile applications (iOS, Android, and Tizen) and their associated services.Developed a checklist and long form guide on secure coding practices for developers.Created and presented in-house courses on security, reverse engineering, programming best practices to technical and non-technical.

Beaverton, OR, US

Lead developer for a Greenfield application focused on Commerce and making extensive use of Core Data, UIKit Dynamics, and AFNetworking.Performed both black box and gray box penetration tests and security analysis of the application prior to App Store submission. This included static analysis of binaries, fuzzing of network calls, and reviewing checkmarx.

Developed a custom sales and location tracking application for a third party client.Application included AddressBook and Salesforce.com integration to import sales contacts including geographic location for overlay onto MapKit views.Application used CoreLocation to track traveling salespeople and alert them when they were within a configurable distance of.

Developed a.NET 4 desktop application localized in 11 languages using WPF that interacted with Un-managed components using a combination of Windows Message Passing, P/Invoke, and Named Pipe IPC.Evaluated code static analysis results for vulnerabilities, performed static analysis and penetration tests of applications to evaluate application security.

US

C#, Silverlight, Entity Framework, T-SQL, BizTalk

C# and ASP.NET, data visualization with Flash and Silverlight. Web Services, xslt, and lots of javascript

Develop ASP.NET applications using ASP.NET 2.0 and.NET framework 3 and 3.5, and the ASP.NET AJAX toolkit/jQueryDevelop data access libraries using LINQ to SQL toolkitDesign and deploy scalable databases using SQL Server 2005 and SQL Reporting Services, created custom dynamic front end to SQL Reporting ServicesDevelop Windows desktop applications using WPF.

Develop GeoProMT, a web based project management application for Geospatial applications using PHP4Convert GeoProMT to use the new Object Oriented capabilities of PHP5, and integrate the application with the Smarty Templating engine.Tested new PHP5 class libraries using PHPUnit.Added AJAX capabilities using Prototype and Scriptaculous Javascript.

Taught Certified Ethical Hacker courses, Network+ and Security+ coursesResponsible for complete rebuild of corporate and classroom network from the ground up, including upgrading IOS and setting up proper ACLs, upgrading all servers to windows 2003, enabling IPSec and VPN functionality.Taught all development classes including C#, ASP.NET, SQL Server 2000.

Managed FreeBSD 6 web server with multiple users.Performed penetration tests and security audits internally on managed servers and externally for various clients.Was responsible for creating and delivering reports to management and company owner regarding security findings.Primary responsibilities include design and development of internal and customer.

Developed full stack web application based on Ruby on Rails to parse MLS listings and generate KML files and Google Maps embedded code for realtor websites.Contributed to the GeoNames ruby gem, adding code to integrate with the paid web service for doing geospatial lookups.Developed a KML parsing and generating ruby gem for internal use.Wrote ruby code to.

Developed custom applications and web services using C#/ASP.NET and Cold Fusion.Developed and tested cross platform OSHA compliance survey software using AppForge for PalmOS, SQL Server and C#/ASP.NET.Developed custom web services for bulk data transfer from ecommerce sites to internal accounting applications using C#, Web Services, and ASP.NETWrote test.

Bachelors, Geography, Computer Science

Open Source Intelligence