Stephen Burris work email
- Valid
- Valid
Stephen Burris personal email
- Valid
Project Leader • ASP.Net Full Stack • Client Requirements Gathering • CSSLP Certified • Team Development • Security Analysis • Process Analysis • Production Management • Self-Starter • New Development/Maintenance • Web Development- 13+ years developing web applications on the .Net stack- 7+ years’ experience on web vulnerability audits and secure coding best practices.- Skilled supervisor and technical lead, set direction/goals of team of various sizes (3 to 14)- Proven record of reducing complexity and processing time while increasing customer experience and productivity.- Developed training material on topics ranging from basics of programming, web development and methodologies, and providing quality secure code to the customer.Languages:C#, JavaScript, HTML, SQL, VBATechnologies:ASP.Net Web Forms/MVC, Windows Azure, Unit Testing, Entity Framework, LinqToSql, ADO.Net, Telerik Kendo UI, jQuery, Bootstrap, Forms Authentication, ELMAH, Log4NetTools:Visual Studio, Eclipse, Resharper, NCrunch, MS SQL Server/Management Studio, Fortify SCA/SSC, WebInspect, IBM AppScan Standard, Trustwave AppDetective Pro, Rapid7 AppSpider, Burp Suite Pro, SVN, Git
-
Senior Application Security EngineerIntapp Sep 2024 - PresentPalo Alto, Ca, Us -
Principle Security ConsultantNetspi Dec 2022 - Sep 2024Minneapolis, Minnesota, Us -
Senior Security EngineerRally Health Jul 2021 - Dec 2022Washington, D.C., Us -
Information Security Engineer (Application Security)Wells Fargo Jun 2019 - Jul 2021San Francisco, California, UsMember of a team responsible for validating remediation implementations from developers.- Provide feedback developers on the effectiveness of their solutions to vulnerabilities.- Led a team to revamp the Quality Assurance portion of our process.- Lead Developer for the next generation of tools during our agile transformation efforts.- Developer on web portal to interact and gather information from the lines of businesses.- Mentored developers and other AppSec professionals in various security area. -
Application Security ArchitectAvidxchange, Inc. Jul 2018 - Jun 2019Charlotte, Nc, UsResponsible for driving secure software development and testing practices with goal of protecting commercial and internal applications and data.- Developed training for engineering department on secure coding, focusing on common defensive measures and common vulnerabilities from OWASP Top 10 and SANS CWE Top 25.- Worked to get organization through its first PCI compliance audit.- Created 3-year plan to get AppSec program up and running to include SAST, DAST, and SCA components along with phased approach for each.- Enhanced existing SAST program and implemented repeatable processes to expedite pipeline.- Trained wider security team on source control, script development, and programming basics.- Mentored junior AppSec employee on security fundamentals and filled in gaps in knowledge.- Worked on multiple projects outside of primary responsibilities. -
Application Security EngineerXpo Logistics, Inc. Jan 2018 - Jun 2018Responsible for designing and implementing the organizations Application Security Program- Standing up a SAST and DAST scanning programs.- Creating standards and guidance for development teams.- Build internal security tooling to help automate the collection and processing of scan results.- Working with the application development teams to ensure secure coding practices are implemented.- Perform Manual and Automated Code Reviews using Rapid7 AppSpider, BurpSuite, and Dependency Checker, Qualys SSL labs, and nmap.
-
Software Security ConsultantMicrofocus Governement Solutions/Hewlett Packard Enterprise Nov 2015 - Dec 2017**MicroFocus bought the software division of HPE.**Subject Matter Expert for the HPE Fortify Static Code Analyzer (SCA) tool, the WebInspect Dynamic Application Security Penetration and Scanning Tool, as well as the web-based collaborative Software Security Center (SSC) tool.- Worked with enterprise customers to design software assurance programs and deploy Fortify products.- Perform static code analysis of software applications written in a wide variety of programming languages including Java, C#, C/C++, and ASP.NET to fix potentially exploitable vulnerabilities at the root cause early in the software development cycle.- Designed and delivered classroom training for developers, testers, and technical leads.- Advised project managers and developers on secure coding practices, developing security metrics programs, and meeting compliance mandates- Provided training classes covering defensive programming techniques, using Fortify to find security issues in software, and meeting compliance mandates.
-
Senior Software Security ConsultantUnited States Air Force Jul 2013 - Dec 2015Randolph Afb, Tx, UsManaged 14 government/contractor Department of Defense software assurance consultants. Helped incorporate secure coding standards to development shops’ Software Development Lifecycle.- Managed 14 personnel shop, led 4 person team, directly supervised 3 other team leads.- Provided mitigation strategies for 22K critical findings to 20 development shops/51 applications.- Selected to be on technical evaluation team for $17 million dollar contract.- Created secure coding training course, educated 212 developers, saved $550K in training costs.Tools Utilized:- HPE Fortify- IBM AppScan Standard- AppDetective -
Software EngineerFacility Circuit Information Tracking Program, Air Force Aug 2011 - Jun 2012Randolph Afb, Tx, UsPerformed unit, integration, and system testing to validate accuracy of application modifications - Engineered prototype to ensure rebaseline of code meet all 17 area’s functional requirements.- Devised new user role management system, simplifying security management.
-
Lead Developer/Developer375 Communications Support Squadron, Air Force Nov 2007 - Aug 2011Managed 2 diverse software development teams consisting of 10 military, civilians, and contractors. - Steered team of 10 individuals, directly supervised and performed annual evaluations on five.- Guided change of Self-Inspection system, ensuring 5 MAJCOM oversight of 650K items.- Provided tier-3 level support to contracting system, enabling $1.5M in daily contract awards.- Engineered automated Air Tasking Order data system, eliminated 4 hours of manual input a day.Tools Utilized:- HPE Fortify SCA
-
Unit SchedulerAir Force Honor Guard, Air Force Oct 2005 - Nov 2007Scheduled daily work orders for 250 members for 2.5K Air Force, and Presidential missions annually.- Created scheduling application, automated once manual process, saving 4.2K man-hours yearly.- Interfaced database with outlook to provide single dashboard showing manning to management.
Stephen Burris Skills
Stephen Burris Education Details
-
Mckendree UniversityComputer Science -
Community College Of The Air ForceComputer Science Technology
Frequently Asked Questions about Stephen Burris
What company does Stephen Burris work for?
Stephen Burris works for Intapp
What is Stephen Burris's role at the current company?
Stephen Burris's current role is Application Security Professional (Blue Team).
What is Stephen Burris's email address?
Stephen Burris's email address is st****@****lth.com
What schools did Stephen Burris attend?
Stephen Burris attended Mckendree University, Community College Of The Air Force.
What skills is Stephen Burris known for?
Stephen Burris has skills like Asp.net Mvc, Trustwave App Detective Pro, Simple Membership, Entity Framework, Git, Ninject, Jquery, Ncrunch, Web Applications, Active Top Secret Security Clearance, Visual Studio, Miniprofiler.
Free Chrome Extension
Find emails, phones & company data instantly
Aero Online
Your AI prospecting assistant
Select data to include:
0 records × $0.02 per record
Download 750 million emails and 100 million phone numbers
Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.
Start your free trial