
Security Engineer at Jet Propulsion Laboratory
Phoenix, Arizona Area

Security Engineer at Jet Propulsion Laboratory
Phoenix, Arizona Area
Experience Highlights:
I presently serve as a Security Engineer and System Architect at the NASA Jet Propulsion Laboratory. My duties include working closely with multidisciplinary teams ranging from Knowledge Management, Knowledge Architecture and Advanced Technologies (KAAT), and the NASA Engineering Network (NEN). My projects and objectives include, but are not limited to, security and system engineering, security architecture and design, access control, cryptography, information security and risk management, vulnerability research and penetration testing.
As the lead security engineer for several projects, my standard security implementations and custom solutions have provided both JPL and NASA with lasting confidentiality, integrity and high availability in several online capabilities. In addition, my proficiency in technical writing with regard to policies, procedures, user manuals and tutorials have further provided JPL and NASA with the requisite information to operate and maintain the solutions I have delivered.
In addition to my work for JPL and NASA, I am also a Certified Information Systems Security Professional (CISSP) and an active member in the Institute of Electrical and Electronics Engineers (IEEE) and the IEEE Computer Society.
Career Goals:
My goal is to continue in my current field of practice in addition to learning new technologies and applications. My focus will remain in the area of securely implementing and using these technologies in development and production environments. My ultimate goal is to continue this career path to the level of Senior Security Engineer and ultimately the role of Chief Information Security Officer (CISO).
Specialization in host and network security; risk assessment and penetration testing; IPfilter and IPtables firewalls; Checkpoint FW1 certified; intranet & extranet design, development and deployment; knowledgeable on International Traffic in Arms Regulations and Export Administration Regulations; extensive user & admin experience on a multitude of operating systems ranging from Linux, Solaris (SPARC & x86), HPUX, AIX, IRIX, FreeBSD, OpenBSD, MacOS, DGUX, MS-DOS, Windows 3.x through Vista.
(Government Agency; 5001-10,000 employees; Defense & Space industry)
November 1995 — Present (13 years 1 month)
Create, evaluate and document security solutions for a multitude of projects across the NASA and JPL IT infrastructure. Author of security policies and procedures for several projects. As security engineer, I took the initiative to identify all independent NASA center networks for the purpose of creating centralized NASA resources available only to NASA centers and personnel.
I also spearheaded the NASA Jabber secure instant messaging pilot program. In this, I defined and delivered the core competencies for both NASA and JPL security-enhanced instant messaging services. Under my work and guidance, these services became institutional standards for both NASA and the Jet Propulsion Laboratory.
I also serve as Team Lead for Inter-NASA Emergency Operations which I designed, developed and deployed via the InsideNASA portal, including a realtime advisory system by which on-site and off-site personnel can receive timely information during natural and man-made disasters.
(Computer & Network Security industry)
May 1995 — Present (13 years 7 months)
Independent computer & network security consultant. Assess, evaluate, advise and implement system improvements in terms of performance, security and availability. Provide custom solutions for businesses and individuals to meet their professional and personal computer and network requirements.
(Computer & Network Security industry)
April 2000 — August 2001 (1 year 5 months)
Authored security policies and procedures. Acquired, developed and deployed security solutions for various customers. Specialized in bastion host security, system auditing, black box penetration testing, firewall construction and configuration.
Contributing author to "Hack Proofing Your Web Applications" -- wrote chapter 5, "Hacking Techniques and Tools."
Bachelor of Science in Information Technology, Information Security Systems, 2008 — 2010 (expected)
Computer & Network Security, Programming, Professional Writing, Ethics, Commercial Illustration
Years ago I had a professor who advised me to never let school interfere with my education. This suggestion proved to be a guiding principle in the years that followed.
Though I am currently enrolled to complete my Bachelors of Science in Information Technology Security, I believe my personal passion in cultivating my talents and skills has made me uniquely qualified to succeed in the field of security engineering and system architecture.
security best practices, new technology, 802.11 standards, good coffee, technical writing, creative writing, woodworking, carpentry, painting, sculpting, drawing, fishing, low-stakes poker, blackjack
Institute of Electrical and Electronics Engineers (IEEE), IEEE Computer Society
Recipient of NASA Engineering Network achievement award, June 2007.
Recipient of NASA Engineering Network achievement award, August 2006.
Recipient of NASA Group Achievement Award for work on the OneNASA Portal, May 2004.
Recipient of NASA Headquarters Civil Service/Contractor team award, November 2003.
Recipient of JPL award for work on JPL Technical Report Service, May 1999.