Principal Consultant with 20 years of experience in the software industry

Experienced with
* Requirements gathering; partnering with customers to understand their needs and goals
* Consulting and engineering work on customer-specific projects; includes extensive use of APIs
* Teaching courses on the use of enterprise-class software
* Technical writing and documentation review
* Agile Scrum methodology
* Software testing and quality assurance
* Security concepts, tools and best practices
* Networking technologies, concepts and protocols
* Software configuration management
* Unix Shell, Visual Basic, JavaScript, T-SQL, XML/XPath, HTML, HTTP protocol
* Dev/QA tools, including IBM RTC, HP QC/ALM, Jira, Bugzilla
* VMware/ESX, Windows, Unix/Linux, OpenVMS

Some experience with
* Software development best practices
* Database design and administration
* Network design and administration
* Java, C, C++, PL/SQL, COBOL, Pascal
* Eclipse, Visual Studio

Management background includes
* Leading Quality Assurance and Sustaining Engineering teams with local and remote members
* Overseeing Quality Assurance, Documentation and Support for numerous enterprise-level software releases
* Product and Project Management

Security-specific experience:
* Assisted in designing and led the testing of the security schema for an enterprise-level client/server product
* Implemented HttpOnly cookie flag in JBoss 5.1 and 7.1 (required creation of custom JBoss Web valve to modify HTTP headers in 5.1)
* Through manual inspection, discovered numerous cross-site scripting (XSS) vulnerabilities across multiple product lines
* Found many other security bugs and problems, some of which exposed public sites to personal data and email harvesting
* Attended conferences, training and classes covering various security domains at Security B-Sides, Techno Security and Forensics, Learning Tree, and Montgomery College; included CISSP, Cisco Security and CCNA coursework