Managing Consultant
Washington D.C. Metro Area
- Current
-
- Postmaster at Fairfax Cable Access Corporation
- Technical Manager <paco@cigital.com> at Cigital, Inc.
- Recommended
-
2 people have recommended Paco - Connections
-
199
connections
- Industry
- Computer & Network Security
- Websites
Paco Hope’s Summary
Mr. Hope oversee simultaneous execution of multiple teams delivering software security assessments for a single client. He provides technical leadership, maintains consistent quality, and ensures that all deliverables arrive on time and on budget.
Since the creation of the Payment Card Industry (PCI) standard, Mr. Hope has assisted MasterCard with integrating concerns such as wireless networking and TCP/IP security into the new, evolving standard. He is the seminal author of several publications expanded on and rebranded by MasterCard.
Mr. Hope oversees the development and maintenance of Cigital’s SmartCard Analysis Suite™, an Cigital-developed, standards-based test harness for analyzing GlobalPlatform and JavaCard smart cards. He has analyzed or overseen the analysis of smart cards from several major vendors under contract to both MasterCard International, and Visa USA.
As a senior software security consultant Mr. Hope evaluated several kinds of embedded systems in the electronic gaming industry based on embedded versions of Linux. The analysis typically included architectural analysis at both the software and the systems levels, with occasional reverse engineering, disassembly, and network attacking to demonstrate vulnerabilities.
Mr. Hope has analyzed the internal software and development methods at a major US financial regulatory organization. Through his testing and analysis security vulnerabilities were found in COTS software that required significant remediation. By considering the impact of regulatory compliance and the sensitivity of data, he showed how a simple system that allowed submission of resumes online could have significant impact on the security of financial data at the organization.
Paco Hope’s Specialties:
Software development life cycle (SDLC), software security, crypto, smart cards (Java card, Open Platform), Linux embedded systems, FreeBSD, gaming systems.
Additional Information
Paco Hope’s Websites:
Paco Hope’s Interests:
Software Security, Digital Photography, Natural Childbirth (quite a variety of interests, no?)
