Don David Kraft
SUMMATION
I am an experienced and dedicated Information Technology professional
with broad and deep experience with computing system hardware,
software and networks.
QUALIFICATIONS
System Operations - I have many years of experience in engineering and
operational roles. These experiences range from standalone and
network backup solutions, operating system installation and upgrades,
and performance monitoring and troubleshooting.
Networking - I have extensive engineering experience with Cisco
networking, switches, routers, IOS Server Load Balancing and PIX
firewalls. I was an early adopter of IPSEC tunneling technology to
connect remote offices and new acquisitions saving both time and money
while ensuring a secure connection. I am especially adept at dealing
with firewall issues - both design and troubleshooting. I have also
engineered and administered Network Intrusion Detection Systems based
upon ISS SiteProtector.
Incident Response - I have had several positions requiring incident
response skills and experience. In the role of Incident Manager, I
have provided and ensured clear communication of the issue, status,
and remediation plans with Executive leadership while concurrently
analyzing problems and coordinating recovery. I am often sought out
to solve operational problems that have resisted definition by the
responsible support groups.
Analytical Skills - I have specialized and unique skills in the
analysis of large volumes of log data. By primarily utilizing
Microsoft Access which I program using Visual Basic for Applications
(VBA), I reduce dependency on expensive tools while retaining the
ability to customize quickly to meet the specific analytical need. I
use the resultant data in combination with the MS Office charting
tools to visualize the data. This visualization often shows otherwise
hidden relationships and, in addition, serves as an efficient method
to explain problems to both technical staff and leadership.
Computer Forensics - I am trained and certified in computer forensic
analysis methodologies and am skilled in Open Source and Commercial
Forensic products such as Access Data Forensic Toolkit. I have also
worked with internal Legal Counsel to research the extent and legality
of certain investigative and monitoring activities in certain
jurisdictions and countries.
PROFESSIONAL EXPERIENCE
2006 - 2010 HP Enterprise Services Tulsa, OK
Global Security Incident Response Team
. Responsible for providing 24/7 security incident response and
incident management to global companies across multiple industries
including Transportation, Energy, Financial, Manufacturing, and
Government.
. Provided computer and network forensic analysis and reporting for
investigations ranging from DDOS attacks, Acceptable Use
Violations, Intellectual Property and Privacy Data theft, and
defacements.
. Managed relationships with Client and HP Account leadership to
ensure effective preparatory and post incident management
effectiveness as well as created and implemented custom incident
response plans in alignment with Client policies.
. Coordinated e-Discovery collections utilizing industry best
practice methodologies and procedures to ensure consistency of
process and continuous chain of custody.
2004 - 2006 EDS Tulsa, OK
Intrusion Detection Services
. Designed and engineered Network Intruder Detection System solutions
utilizing ISS SiteProtector to provide ingress and egress
monitoring of network traffic for suspicious traffic for subsequent
investigation.
. Ensured daily care and maintenance of Intruder Detection Systems
for numerous global clients and the coordinated methodical process
of signature tuning based upon each Client's environment and
policies.
. Responsible for ensuring generated alerts were sent from the
Intruder Detection Systems to the appropriate centralized logging
solutions as well as the Security Operations Center for
investigation.
1995-2004 Sabre Holdings, then EDS Tulsa, OK
Data Center Network Engineering
. Responsible for engineering new and expansion of existing network
environments using a mixture of Cisco routers, switches, and
firewalls.
. Worked extensively with Project Managers and System Administrators
to design and ensure efficient end-to-end network connectivity.
. Provided On-Call response to emergency and operational support
issues and represented Network Engineering on countless Crisis
Calls.
1989-1995 American Airlines Tulsa, OK
VAX and Front End Operations
. Responsible for providing third level support for VAX/VMS systems
as well as mentoring second level support to provide knowledge
transfer.
. Analyzed circuit switched data networks and protocols to determine
cause of problems and to provide solutions to address the
situation.
. Implemented document tracking system for support documents and
drawings.
1981-1989 Texas Instruments Lewisville, TX
Software Technician, Integrated Systems and Image Processing
Laboratory
. Responsible for software and hardware support for the lab VAX/VMS
Systems and ancillary equipment.
. Performed hardware installations including interfacing with
facilities to obtain proper power and HVAC.
. Required to maintain an active Department of Defense Secret
Clearance.
EDUCATION AND CERTIFICATIONS
High School - Shawnee Mission South Overland
Park, KS
University of Tulsa - Engineering Physics, no degree
Tulsa, OK
GIAC Certified Forensic Analyst Certified Information System
(GCFA) Auditor (CISA)
Certified Information Systems
Security Professional (CISSP)