Dave Leach

Current

Sr. Associate at Booz Allen Hamilton

Past

Department Manager at Northrop Grumman
Sr. Network Security Engineer at Telos Corporation
Security Engineer at UUNet

Network Engineer at EWA-IIT
Network Administrator at Sidwell Friends School
Network Engineer at Data Systems and Technology, Inc.

see less...

3 more...

Education

Capitol College
Methodist College

Recommended

6 people have recommended Dave

Connections

200 connections

Industry

Information Technology and Services

Websites

Dave Leach’s Summary

Over 11 years experience in designing, implementing, securing, and maintaining multi-platform large scale networks, including worldwide enterprises, ISP’s, DoD and IC networks. Broad knowledge of computer and network systems providing the unique capability of identifying, understanding and resolving complex computer security and management issues. Capable of leading teams of highly technical individuals toward a common goal with in the given time and resource constraints.

Dave Leach’s Specialties:

Cisco Certified Internetworking Expert (CCIE) – Security (Candidate: Written July 05)
Certified Information Security Systems Professional (CISSP)
Cisco Certified Security Professional (CCSP)
Cisco Certified Network Professional (CCNP)
NetScreen Certified Security Professional (NCSP)
Certified Stonegate Architect (CSGA)
Franklin Covey's Aligning Goals for Results Workshop, 2003
NSA Information Systems Security (INFOSEC) Assessment Methodology (IAM), 2000

Dave Leach’s Experience

Sr. Associate

Booz Allen Hamilton

(Privately Held; Management Consulting industry)

July 2009 — Present (7 months)
Department Manager

Northrop Grumman

(Public Company; 10,001 or more employees; NOC; Information Technology and Services industry)

August 2004 — July 2009 (5 years )

Sr. Security Engineer for the NGIT/TASC Corporation specializing in network security design, implementation and evaluation. Acts as the Sr. Network and Security engineer as well as Assistant Program Manager for the UMIS project. Participates as a Sr. Engineer for the NRO EDiD (Enterprise Defense in Depth) group, responsible for implementing and maintaining large scale IDS implementations. Acts as a team member evaluating tools against new operating systems and identifying new vulnerabilities or inconsistencies. Leads the Vulnerability Assessment Program router, switch and firewall evaluations, identifies best practices and makes recommendations for upgrades or configuration changes within the scope of the assessment. Assisted in the design and implementation of a Cyber Threat Analysis database prototype the Argus (now Infinity) program. Support all aspects of proposal response and business development, including Capture Management, Volume Lead, and Subject Matter Expert (SME).
Sr. Network Security Engineer

Telos Corporation

(Privately Held; 501-1000 employees; Information Technology and Services industry)

August 2002 — August 2004 (2 years 1 month)

Sr. Firewall/Security Engineer for United States Army Information Technology Agency (USAITA) responsible for the operation and maintenance of their customer’s firewalls and VPN Concentrators, as well as reviewing all network changes from a security standpoint. Responsible for developing and delivering firewall, security and other perimeter defense training materials to USAITA customers and staff. Provide security-engineering services to the USAITA network engineers and customers within the Pentagon and swing spaces including network design and security policy development. Presented at the Mid-Atlantic network security forum and the Telos Users conference on providing perimeter defense, IDS deployment, alert consolidation, vulnerability assessment and threat response, for large government agencies. Assisted the Vulnerability Assessment Branch as well as the PentCIRT in identifying, locating and remediating or mitigating vulnerable hosts on the network.
Security Engineer

UUNet

(Public Company; 10,001 or more employees; Information Technology and Services industry)

October 2000 — August 2002 (1 year 11 months)

Team lead for the engineering team, assistant lead for the testing team. Also, the Sr. Systems Security Engineer responsible for the design and maintenance of the WorldCom IPVPN managed service. Assist in the design and implementation of multi-million dollar customer networks. Designed the IPVPN component of the IPComm initiative to facilitate VoIP communications worldwide for both "on-net" and "off-net" calls. Designed a networked based VPN and firewall gateway to assist the frame relay and private MPLS customers expand their networks across the Internet. Participated in systems integration design, testing and test creation for all products that interacted with the IPVPN product offering. Participated in customer network design reviews ensuring that the design met or exceeded the customer’s expectations for performance, reliability and security. Also acted as liaison to the product vendor.
Network Engineer

EWA-IIT

(Public Company; 51-200 employees; Information Technology and Services industry)

March 2000 — October 2000 (8 months)

Systems Security Engineer responsible for designing and implementing security measures on a number of current projects. Responsible for assessing the security capabilities within a company or division and the maturity of their policies and procedures and providing recommendations on improving the security posture of the organization. Developed and delivered a 2 week training course for Army National Guard Computer Emergency Response Team (CERT). Acted as the Corporate HQ IDS team lead, responsible for installing and maintaining the IDS as well as monitoring and responding to incidents. Developed the policies and procedures for vulnerability assessments performed by EWA IIT to include standard “Rules of Engagement”, assessment guidelines, and reporting structure. Participated in red teaming efforts for customers as well as pre and post assessment security training.
Network Administrator

Sidwell Friends School

(Non-Profit; 51-200 employees; Information Technology and Services industry)

November 1996 — March 2000 (3 years 5 months)

Network Administrator responsible for planning, installation, security and maintenance of the school’s computer and telephone systems. Provided a series of classes to faculty and staff on the new and upcoming technologies that would be available in the current and upcoming sessions. Manage a budget of $200K annually and a small support staff that consisted of Sidwell staff and students. Engineered and participated in the implementation of a new school wide computer network integrating Netware, UNIX, Citrix Winframe, Windows NT, and Windows 95 over a switched 100Mbps Fiber Optic Backbone with WAN connections between two campuses and the Internet. Responsible for maintaining ALL security services within the organization including emergency telephone systems, network and host security.
Network Engineer

Data Systems and Technology, Inc.

(Privately Held; 11-50 employees; Information Technology and Services industry)

March 1996 — November 1996 (9 months)

Network Engineer and Program Manager responsible for technical and managerial work on several large projects. Also Systems Administrator for company LAN/WAN using Windows NT, and lead technical engineer on a help desk covering several projects as well as corporate LAN/WAN.