Jan 2016 – Dec 2016 · 11 mos · San Francisco, CA · On-site

• Microservice REST API design, Go development, with Python, PHP & SQL, targeting PKI applications.

Feb 2014 – Nov 2015 · 1 yr 9 mos · San Francisco, CA · On-site

• Lead engineering efforts for cryptography standards, secret distribution, certificate management and transport security.

Aug 2012 – Jan 2014 · 1 yr 5 mos · San Francisco, CA · On-site

• Solve large-scale systemic problems involving Identity Management, Authentication, Authorization, Data Integrity and Single Sign-On with PKI, TLS, DSIG, SAML, OpenID, OAuth and OATH. Retooling data center infrastructure for a fully automated lifecycle.

Jan 2012 – Jun 2012 · 5 mos · Cupertino, CA · On-site

• Advise senior management on solutions for problems germane to Identity Management, Authentication, Authorization and Directory Services Integration.

Oct 2008 – Dec 2009 · 1 yr 2 mos · Suitland, MD · On-site

• Development of next-generation systems architecture for NOAA Comprehensive Large Array-data Stewardship System in support of NPP, NPOESS, GOES-R and other future missions.

Jan 2008 – Jan 2011 · 3 yrs · Washington, DC

• Provide strategic guidance on technology issues in support of business objectives. Responsible for hardware/software selection, procurement, deployment, operation and support. Assist with video/photo acquisition and editing/mastering. Perform business development activities including networking, marketing and corporate branding. Oversee business financials and operations.

Jul 2006 – Dec 2011 · 5 yrs 5 mos · Washington D.C. Metro Area

• Provide systems engineering and consulting services to US Federal Government agencies, including NASA, NOAA and DoD.

Jul 2006 – Dec 2011 · 5 yrs 5 mos · Washington D.C. Metro Area · Hybrid

• Oversee long-term project systems architecture, engineering and development activities for NASA Earth Observing System Clearinghouse (ESDIS/EOS/ECHO), NOAA Comprehensive Large Array-data Stewardship System (NESDIS/OSD/CLASS) and NASA SIVO Scientific Visualization Studio.
• Propose, design and implement next-generation computing services including: single sign-on and identity management, hardware and service virtualization, L2/L3 network architecture, IPv6 deployment, storage abstraction/virtualization and cloud computing.

Jul 2006 – Oct 2008 · 2 yrs 3 mos · Greenbelt, MD · Hybrid

• Responsible for specification and vendor selection of hardware, software and service purchases exceeding annual one million USD. Maximized ROI through novel vendor selection (Apple, Procurve).
• Initiated migration of COTS and custom code from Solaris/SPARC and Linux/i386 to EM64T Mac OS X Server systems for significant cost savings and decreased management overhead.
• Provided goals, direction and training to team of systems administrators. Oversaw long-term project systems development and engineering activities.
• Proposed, designed and lead implementation of highly available and scalable Oracle (10g) database and application (J2EE) system architecture. Implementation incorporates multi-master read/write databases and dual-stack active-active application services.
• Lead deployment of system virtualization and clustering, allowing for significant server consolidation, service scalability and improved disaster recovery capability.

Apr 2006 – Jul 2006 · 3 mos · Washington, DC · On-site

• Responsible for design, implementation and management of systems infrastructure supporting federal and state congressional lobbying efforts.
• Creation of centrally managed, single sign-on environment using OpenLDAP, Kerberos V5, NFSv3 and NetBoot and BIND9 on Mac OS X Server 10.4.
• Implementation of enterprise-class VoIP system using Asterisk on Fedora Core 5 (PowerPC).
• Architecture of engineering solutions for expanding existing server environment, including backup solutions, high availability services and secure remote access.

Jun 2005 – Apr 2006 · 10 mos · Columbia, MD · On-site

• Design of system architecture for high traffic, mission critical Internet service infrastructure utilizing commodity UNIX systems based on Apple Xserve, Xserve RAID and Xsan components.
• Responsible for implementation and administration of Internet facing services, including HTTP, HTTPS, DNS, SMTP, IMAP, AFP, FTP, NFS and SSH, on Mac OS X Server 10.4 and FreeBSD 6.0 systems.
• Perform comprehensive security auditing and remediation recommendations of database-driven web applications and supporting infrastructure.
• Development of web-based content management systems using PHP and MySQL.

Nov 2004 – Feb 2005 · 3 mos · Washington, DC

• Working with a team of developers to integrate packet capture and inspection technology with real-time data retrieval (libpcap, PHP, DHTML, XML + XSLT).
• Porting C and C++ code from FreeBSD 5.2 (ia32) to Mac OS X 10.3 (ppc32) and FreeBSD 5.3 (sparc64).
• Development of interactive web front end to FreeBSD-based security appliance using C++, XML and PHP.
• Maintain standardized coding through the use of Subversion and code documentation.

Apr 2004 – Dec 2004 · 8 mos · Washington, DC · On-site

• Development of nationwide volunteer management database for the Kerry/Edwards 2004 Campaign using Mac OS X (10.3.x), PHP (4.x), Perl, XML and MySQL (4.1.x).
• Planning and implementation of architecture for a central voting demographics database; used MySQL and PHP to merge various external data sources into one schema.
• As the Director of the Information Systems team, establish security guidelines and standards of coding and testing the web-based volunteer applications.
• Allocation of user requests and requirements to team members, ensuring timely completion of projects through detailed timelines and realistic milestones.
• Preparation of technical tutorials and presentations for DNC staff members and volunteers, demonstrating the features of newly developed applications.
• Contribute source patches to MySQL AB in order to correct bugs in the MySQL 4.x server code that occur when running on systems with 64-bit addressing.

Jan 2004 – Jun 2004 · 5 mos · Reston, VA

• Development of SOAP/Web Services client-server system to automate network asset management reporting using Perl/XML.
• Design and implementation of web-based network configuration system to manage Foundry layer 4 switching on AOL global networks.
• Management of production Mac OS X (10.3/ppc64) and Linux (Red Hat AS3/ia32) systems, including software distribution/maintenance, monitoring and configuration.

Mar 2003 – Nov 2003 · 8 mos · Silver Spring, MD

• Development of server and network monitoring tools for worldwide infrastructure visibility. Designed and implemented custom network analysis / packet sniffing system based on Apple Xserve platform.
• Primary liaison between Server Engineering and Network Planning departments for joint projects such as network authentication (LDAP/RADIUS/802.1X), IP telephony and server deployment (Lotus Notes, Mac OS X Server, QuickTime/Microsoft Streaming Content Delivery).
• Responsible for company-wide (2500+ users) VPN design and deployment. Developed 802.11 security guidelines. Worked with outside security auditors to verify corporate defense policy implementation.
• Presentation of domestic LAN/WAN utilization data to senior executives with recommendations for architecture restructuring.

Sep 1999 – Nov 2002 · 3 yrs 2 mos · Germantown, MD

• High profile ground-up design and implementation of high-availability network operations center for use by US military. Built systems to handle DoD SBU satellite traffic using Mac OS X and FreeBSD servers and Cisco IOS/PIX network equipment.
• Planning and deployment of secure networks for mission critical commercial and military applications across several continents. Responsible for coordination of WAN interconnections, network firewalls and intrusion detection systems, high-availability LAN design and computer hardware / software specifications.
• Oversight of corporate information technology department to bring about reduced spending and increased reliability of company-wide computer systems. Implemented large-scale migration from Windows/Intel to Mac OS X/PowerPC workstations.
• Lead software development teams on core network systems for global packet-switched satellite communications system. Developed software using C, C++, Perl and UNIX shell on Mac OS X and FreeBSD.