Software engineering and computer security are two sides of the same coin. I am a competent software engineer and penetration tester, utilizing best practices in both fields. I have been working remote since 2017 and been loving it.
Lodestone Security Nov 2018 - Present
Project lead on numerous vulnerability assessments, penetration tests, and OSINT projects. Developed a system to automate OSINT procedures and developed a reporting system in Python and Flask to process vulnerability scans and simplify the reporting system, increasing the productivity and utilization of consultants throughout the company.
Candor (via Aqusition of Tenex Developers) Jan 2018 - Oct 2018
Worked on the backend and frontend of an iOS React application to match users with health insurance plans available to them based on their specific needs. (Ruby on Rails, golang, React, React Native)
Tenex Developers Jan 2017 - May 2018
First non-founding employee of Tenex Developers.
Worked remotely on multiple projects requiring both full-stack and DevOps skills. At Tenex I was project lead on two projects, one Angular and Ruby on Rails application and one Python Flask machine learning application. I also worked to migrate projects from various cloud hosting services to k8s running on Google Cloud. My favorite aspect of the work was working remotely and being largely independent. From a technical aspect I really enjoyed working with Ruby on Rails and Python scikit-learn.
FactSet Research Systems Jun 2012 - Jul 2015
Central Authentication Group - Developed a distributed, authenticated reverse proxy for a service oriented architecture. Developed a web authentication portal. Responsible for deprecation of and transition from legacy authentication systems. Developer for a distributed message bus system.
Security Assurance Group - Performed web application security assessments on internal products. Threat modeled internal infrastructure. Administered and tuned web application firewalls.
Security Assurance Intern (Jun 2011 - Nov 2011) - Wrote fuzzers. Audited custom filesystems. Developed security and authentication systems.
MITRE Jun 2010 - Aug 2010
Developed software to allow realistic IP network simulations using layer 1 data derived from AGI Satellite Toolkit scenarios.
Rensselaer Polytechnic Institute Bachelor of Science (BS) Computer Science and Psychology, 3.82 2008 - 2012
- Tau Epsilon Phi Fraternity House Computing Chair
- Tau Epsilon Phi Fraternity House Scholarship Chair
- OpenEMR
- Metasploit
- Rails Assets
- OpenEMR: CVE-2019-16404, CVE-2019-16862, CVE-2019-17179, CVE-2019-17409
- Blauuw Kilns Remote Kiln Control: CVE-2019-18865, CVE-2019-18868, CVE-2019-18867, CVE-2019-18864, CVE-2019-18866, CVE-2019-18872, CVE-2019-18870, CVE-2019-18871, CVE-2019-18869