Information Technology Security
Resume:
Resume of William Parker
**** ********* *****, *** *****, NV 89120-1303
702-***-**** (h), email: acympj@r.postjobfree.com
To enhance career goals in Information Technology with a company that will utilize my skills in System Administration, Network Design, and Information Security.
SUMMARY OF QUALIFICATIONS
I possess a professional background in computer systems with more than Thirty (30) years of work experience in Information Technology.
Proficient in many phases of Information Technology and Security
Computer Installation Network Administration and Design
System Administration Computer/Network/Information Security
Research and Analysis User Training
I have excellent Communication, Organizational, and Analytical skills with the ability to complete assigned projects in a timely and effective manner.
EDUCATIONAL BACKGROUND
Graduate – College of Southern Nevada (August 2008)
Awarded – Associate of Applied Science in Computing and Information Technology with High Honors (GPA – 3.73)
Graduate - Community College of Southern Nevada (December 2002)
Awarded - Associate of Applied Science in Internetwork Technology
with High Honors (GPA – 3.88)
Graduate - Cisco Network Academy (CCNA 1-4, CCNP 1-4, Fundamentals of
Network Security I/II, Fundamentals of Wireless Networks)
Community College of Southern Nevada (Spring 2001 – Spring 2005)
(41 Credit Hours completed)
Attended University of Nevada, Las Vegas (1981-1988)
Major - Computer Science
Graduate - Valley High School (1981), Las Vegas, Nevada
INDUSTRY CERTIFICATIONS
Cisco Certified Network Associate (CCNA)
Cisco Certified Academy Instructor (CCAI)
Comp TIA Linux+/Network+/A+
Certified Novell Administrator – Netware 5 (CNA)
Certified Fiber Optic Installer (NACC)
EDUCATIONAL BACKGROUND (cont).
TEACHING/PRESENTATIONS
Guest Presentation – UNLV School of Informatics
INF100 – Introduction to Informatics (Dr. Fatma Nasoz) – September 2009
Topic – Business Networking and Interview Tips
Guest Presentation – College of Southern Nevada
Cicso Network Academy CCNA 3 (Mr. Michael Connelly) – October 2008
Topic – I.T. Job Outlook in Las Vegas and Interviewing Techniques
Guest Presentation – UNLV School of Computer Science
CS446 – Computer Security (Dr. Yoohwan Kim) – April 2008
Topic – Working in Information Security
College of Southern Nevada – Adjunct Instructor
Fundamentals of Network Security I/II – Spring Semester 2007
Guest Presentation - UNLV School of Computer Science
CS345 – Information Security (Dr. John Harrison) – Spring 2005
Topic – Internet Forensics and Network Security
AREAS OF EXPERTISE
Hardware (Mainframe/Microcomputers)
Control Data Cyber 172, 730, 830, Digital Equipment PDP 11/34 and
11/44, VAX 750 and 8650, Sun Microsystems 3/280, Harris Corporation
H-800. All makes of PC compatible computer systems.
Hardware (Networking and Routers, Data Communications)
Cisco 1601/1720/2501/2600/3640/4700 routers. 1924/2950/3550/4000 series switches, PIX-501 and 515E Firewalls, AP1100/1200 Wireless access points, data cabling (CAT-5, Fiber), Kentrox CSU/DSU’s, Digiboard PC/Xem communication controllers, ISDN, T-1 & T-3’s, network/routing protocols for above platforms include IPX/SPX, TCP/IP, UDP, EIGRP, OSPF, MPLS and SNMP v2/3, in addition to IPSec based VPN’s
Operating Systems/Virtual Environments
Microsoft – DOS 3.3 to 6.22, Windows 3.x/9x/ME/XP/Vista/
Windows 7/8.x/NT 3.x/4.x/2000/2003/SBS 2008
Unix – BSD 2.9/4.3, FreeBSD 4.x-10.x, OpenBSD 5.x, NetBSD 5.x-7.x
Linux – Red Hat/Fedora, OpenSuSE, CentOS, Debian, Xen
Oracle – VirtualBox 4.x/5.x
VMWare Player 6.x/7, Workstation
Puppet – Open Source 4.x
Novell Netware – Versions 3.1x, 5.x
IBM – OS/2 Warp 3 and 4, OS/400
Control Data Corporation – NOS/BE 1.4, Kronos 2.1, NOS 1.x/2.x
Digital Equipment Corporation – VMS 4.x, RSTS/E
Sun Microsystems – SunOS 3.x
Harris Corporation – Vulcan 1.x to 5.x
AREAS OF EXPERTISE (cont).
Programming Languages
Basic, Fortran (66/77), Cobol, Pascal, Assembly, C, Java, Modula-2, ADA, Unix /Linux Shells (CSH/BASH/SH), Python, Perl, grep/awk/sed, IBM CICS, IBM JCL.
Computer Applications
Foxpro 2.5, UWRIM/RTIRIM/MS-SQL (SQL based Databases), Microsoft Office, Wordperfect (all variants), Qmail 1.03 (replacement for Sendmail), MRTG 2.8.x/2.9.x (traffic graphing utility), Samba 2.x, 3.x, 4.x (Windows to Linux file sharing), Codebase 5.x/6.x (C/C++ database API engine), Snort 2.4.x/2.6.x/2.8.x/2.9.x Intrusion Detection System, Tripwire, Nikto, Nessus, Nmap, tcpdump/windump, Ethereal/Wireshark, AlienVault OSSIM 4.x, NetForensics version 3 & 4 SIEM, gdb, Immunity Debugger, Remedy Ticketing System, ArcSight SIEM.
Unpublished Internet Articles
I have written several articles for the website:
http://www.linux-sxs.org/
Dial in PPP Server for Linux
Basic Security Pointers for Linux Servers/Workstations
Compiling Apache 1.3.2x for Caldera OpenLinux 2.x
Reducing Output from Cron Scheduler/Changing Logging on PortSentry
Compiling TFTP for Caldera OpenLinux 2.x/3.x
Upgrading LILO (Linux Loader) for Caldera OpenLinux 2.x/3.x
Compiling Samba-2.2.2 for Caldera OpenLinux 2.x
Getting McAfee Anti-Virus to work in Caldera OpenLinux 2.x/3.x
Attaching a Linux Server to Netware 5.x in Caldera OpenLinux 2.x
Open Source Project Contributions:
2010-2016
I have produced more than 250 source code patches to the Snort
Intrusion Detection system and ClamAV open source anti-virus system, and have provided source code (pending review/accepted) to enhance the Snort Sensitive Data Preprocessor and ClamAV Sensitive Data Format/Data Loss Prevention processor to detect additional credit and debit card information, along with bank routing information being sent over data networks (including the internet) in an unencrypted manner.
Additional work is in progress for detecting medical diagnosis codes from ICD-9 and ICD-10 coding formats for detecting HIPPA and PII being sent in cleartext form over networks and/or the internet without encryption for both Snort and ClamAV.
Additionally, I am listed in the authors/major contributors/contributors
sections (via README/About/Changelog) for the following software applications:
Libpcap (Network Packet Capture Library)
TCPDump (Network CLI Packet Analyzer)
WireShark (Network GUI Based Packet Analyzer)
NMAP (Security Scanner for Port Exploitation)
ClamAV (Open Source Anti-Virus Scanner)
Snort (Open Source Intrusion Detection/Prevention System)
ISC DHCP (DHCP Server/Client)
ISC BIND (Domain Name System Server/Client)
ISC INN (Network News Server/Client System)
In the 4th quarter of 2012, Sourcefire (now Cisco Systems) (developers of the Snort IDS and ClamAV) made me a member of the Snort team (under the major contributor section) for my code and documentation contributions to the Snort Open Source Intrusion Detection System.
As of the 4th quarter of 2015, I am now listed as a contributor for the ClamAV open source Anti-Virus system at www.clamav.net under the About link.
Additionally, I have written a guest diary for the SANS institute as part of their incidents website at http://isc.incidents.org entitled:
'Are you losing system logging information (and don't know it)?'
I have also authored Snort IDS/IPS installation guides for the following
computer operating systems (which are located at www.snort.org/documents):
OpenSuSE 12.x/13.x, Fedora (RedHat) 17/18/19/22, FreeBSD 8.x/9.x/10.x, OpenBSD 5.x, NetBSD 5.x/6.x/7.x, and CentOS 6.x/7.x.
Other documents which I have authored which are related to the above
installation guides are:
Rate limiting issues with Snort 2.9.x and rsyslog
Mirroring network traffic with consumer grade routers to Snort 2.9.x
Integrating Snort with AlienVault 4.x/5.x OSSIM SIEM
Possible Packet Loss during Reassembly for Snort IDS/IPS sensors
Additional Open Source Projects that I have contributed source code and/or patch files (approximately 650+ submissions) include the following (November 2010 through November 2016):
AFTR 1.x (Address Family Transition Router) (under review)
Apache 2.4.x (Open Source Web Server) (code accepted)
Barnyard2 (SQL Database API for Snort IDS alerts) (code accepted)
Bash-3.4.x (Unix/Linux Shell Interpreter) (under review)
Bind 9.10.x (ISC Domain Name System Software) (code accepted)
Bro-2.x (Network Security Monitor) (code accepted)
DAQ-1.1.x/2.0.x (Data Acquisition Library Processor) (code accepted)
DHCP 4.2.x (ISC Dynamic Host Configuration Protocol) (code accepted)
Ettercap 0.8.x (Man In The Middle Attack Tool) (code accepted)
Exim 4.8x (Exim Mail Transfer Agent) (under review)
Glibc 2.2x (The GNU C Libraray) (code accepted)
ISC INN 2.6.x (Network News Server/Client) (code accepted)
Libcap-ng-0.7.x (Next Generation capture library (bugs comfirmed)
LibHijack 0.6.x (Runtime Process Infection Tool) (bugs confirmed)
Liblinear 1.9.x (Large Linear Classification Library) (under review)
Libpcap-1.3.x-1.7.x (Packet Capture Library) (code accepted)
LibreSSL-2.2.x (portable) (Libre Secure Sockets Library) (code accepted)
Libxml2 2.6.x (XML C Parser and Toolkit for GNOME) (code accepted)
LinuxPTP 1.5 (Precision Time Protocol for Linux) (under review)
MariaDB 10.0.2x (Relational Database) (code accepted)
Modsecurity 2.9 (Web Application Firewall Engine) (under review)
MySQL 5.6.x (Relational Database) (code accepted)
Nagios 3.4.x (Data Network Monitoring Software) (assigned to staff)
NMAP 6.x/7.x (Security Scanner for Port Exploration) (code accepted)
NTP 4.2.x (Network Time Protocol Project) (code accepted)
Ossec-HIDS 2.8.x (Host Based IDS) (code accepted)
OpenSSH 7.x (Open Source Secure Shell Server/Client) (code accepted)
OpenSSL 0.9.x-1.0.2 (Open Source Secure Sockets Library) (code accepted)
OpenVPN 2.3.x (Secure Tunneling Daemon) (code accepted)
PostgreSQL 9.4.x (Relational Database) (code accepted)
Python 3.4.x (Programming Language) (under review)
Quagga 0.99.x (Open Source Routing Software Suite) (under review)
R-3.1.x (Math and Statistics Programming Language) (under review)
Samba 4.0.x (Windows/Unix/Linux File Sharing) (under review)
Sendmail 8.14.x (Open Source Mail Transfer Agent) (code accepted)
Sqlite 3.8.x (Lightweight SQL Database Engine) (under review)
Squid-3.5.x (Caching Proxy for Web Services) (code accepted)
Suricata-2.0.x (Suricata Intrusion Detection System) (code accepted)
TCPDump 4.3.x-4.7x (CLI Network Packet Analyzer (code accepted)
TCPReplay 4.x (Network Packet Replay Tool) (code accepted)
TCPSlice 1.x (Packet Trace File Extraction Tool) (under review)
TCPTrace 6.x (TCP connection analysis tool) (under review)
VLC-2.x (VLC Media Player) (under review)
Wireshark 1.8.x-1.12.x, 2.x (A Network Traffic Analyzer) (code accepted)
Wolfssl 3.8.x (Embedded SSL Library) (code accepted)
Zlib-1.2.x (General Purpose Data Compression Library) (code accepted)
2004-2009
I have contributed source code to the Snort Intrusion Detection System for versions 2.4.x, 2.6.x, and 2.8.x; in which I implemented the configuration option known as –enable-timestats so that network/system/security administrators could get an idea of how much traffic snort is processing on an hourly basis, without having to stop and start snort, or by using SIGHUP to force dumping of data to /var/log/messages in a Unix or Linux environment. This was phased out in Snort version 2.9 alpha when SourceFire developed the performance monitor module, which gathers many more statistics than my original module.
PROFESSIONAL WORK EXPERIENCE
10/2010 to
Current Consultant/Researcher
Environment: PC’s, Laptops, and Servers, Consumer Routers and Switches, Programming in C/C++, Shell Scripting, gdb, immunity debugger, etc.
I provide advice to businesses and individuals on a wide variety of information technology topics, including obtaining hardware and/or software for use in homes or small/medium sized businesses. Additionally, wrote additional software and patches for many open source programming projects (see above section: Open Source Project Contributions), provided articles for the SANS information security website located at: http://isc.incidents.org
2/2008 to
8/2010 Onpoint Corporation
Las Vegas, Nevada
Sr. Intrusion Analyst
Environment: PC’s, Servers, Windows XP/TS Client, Red Hat Linux WS, Wireshark/TCPdump, NetForensics/Arcsight SIEM’s, Snort IDS (2.4.x, 2.8.x), Remedy 7.x Ticketing System, Foremost 1.5.x, shell scripting, Python, Perl, BASH/CSH/KSH, Awk/Sed/Grep, Acronis Backup, Bacula
Provide information security support to a U.S. Government Agency to support analysis of hacking/intrusion attempts against computer systems and networks in real-time/near real-time situations. Primary tasks includes daily report generation of attempted intrusions, port scanning, network and system reconnaissance, writing and/or research of tickets for other analysts and/or management, packet analysis using TCPDump and/or Wireshark. Utilized NetForensics 3.x/4.x SIEM to correlate data captured from sites which were being monitored for intrusions. Other duties include writing/modifying rules for SNORT 2.8.x, preparation of monthly site reports, data mining, decoding/reconstruction of files which contained potential malware or rootkits for further analysis by forensic specialists, and other tasks assigned by management.
PROFESSIONAL WORK EXPERIENCE (cont)
In addition, I was also responsible for training new intrusion analyst hires to get them up to speed on the environment they would be working in.
Note: From 2/2008 to 5/2010, the company which held the contract for the above position was NCI, Incorporated.
3/2006 to
2/2008 Consultant/Instructor
Las Vegas, Nevada
Environment: PC’s, Servers, Windows 2000/XP, Cisco 2621/3550, PIX 515-E, Security tools (snort, nessus, nikto, nmap, tripwire, NetStumbler, etc).
Provide support to businesses and clients in the area of network and system security (which includes hardening network equipment against unauthorized intrusion), making recommendations on equipment purchases, and designing networks to optimize security. In addition, I taught the Fundamentals of Network Security course (Cisco Network Academy) at College of Southern Nevada during the Spring 2007 semester.
8/1994 to
2/2006 Don Best Sports
Las Vegas, Nevada
Systems Administrator
Environment: IBM PC’s, Novell Netware 3.12/5.x, Windows 9x/NT 4.0/2000/XP, OS/2 Warp 4, Linux, Cisco (1601/2501/2600/3640/4700 Routers, 2950/3550 Switches), Firewalls (PIX 515-E/ipchains/iptables), Cisco 3000 VPN Concentrator, Snort 2.4.x, 2.6.x Nmap, NetStumbler, Nikto, Rsync, Amanda Backup, Radware Load Balancers.
Maintain PC based servers that provide service to approximately 30 employees, and more than 2500 customers located throughout the United States and other countries. Primary job tasks are to maintain 30 Linux servers and 12 Windows NT/2000 servers that provide access for the premium/express system of sports information that we offer. Also responsible for upgrades of hardware and software needed by employees in office and maintaining Cisco 2621/3640/4700 routers, associated high speed data links, and system security for servers, workstations, and routers/switches (security includes use of Intrusion Detection/Prevention Systems (using Snort Open Source Software and Cisco IDS), centralized logging, bandwidth monitoring, ACL’s, null-routing, and rate-limiting).
PROFESSIONAL WORK EXPERIENCE (cont)
Major accomplishments include:
Replaced Windows Proxy Server 2.0 with Linux to increase throughput for internet access in the office at lower cost and more stability, and implemented caching DNS and DHCPD for easier administrative handling of employee PC’s.
Implemented mail server based on Qmail 1.03, Vpopmail 4.x, QmailAdmin, and Sqwebmail to provide SMTP/POP3 access for employees and customers using the donbest.com and islandxpress.com domains (currently provides backup to Exchange Server system).
Implemented the use of MRTG to monitor network traffic usage by employees and customers accessing the domain donbest.com (uses SNMP v2/3 protocol) for cost analysis and breakdown (bandwidth utilization) of T-1’s and server CPU/Disk/bandwidth usage.
Replaced 16 Servers running Windows NT Server 4.0 and our premium Java Server application with Linux and Sun Java 1.4.2/1.5.x (no hardware upgrade needed) at a license cost reduction in excess of $15,000 dollars.
Implemented file and web servers based on Apache 1.3.2x/2.0.x and Samba 2.2.x/3.x to replace main content file server based on Windows 2000, and have successfully authenticated Samba 3.x against
Windows 2000 Active Directory Service utilizing Kerberos and Windows Bindery (eliminates having usernames and passwords in Linux).
Implemented migration from Novell 3.12 to 5.x to provide updated capability for file serving and IPX plus TCP/IP support (replaced by Linux/Windows 2000 based systems).
9/1990 to Self Employed
8/1994 Las Vegas, Nevada
Computer Consultant
Environment: IBM PC’s and Compatibles, networking and communications equipment.
Provided advice on the purchase, installation, upgrading, and utilization of IBM PC compatible hardware and software in standalone or networked environments for businesses or private individuals. Duties include personal visitation with clients to assess overall computing needs for use in a business environment or for personal computing needs. Also provided service and follow up advice to companies and individuals regarding overall effectiveness of computing systems in day-to-day operations.
PROFESSIONAL WORK EXPERIENCE (cont)
7/1988 to Control Data Corporation/Bell Atlantic
9/1990 Las Vegas, Nevada
Field Inventory Specialist/Diagnostic Engineer
Environment: Cyber 830, IBM PC’s, Parts Data Base, various types of test/diagnostic equipment.
Responsible for computer hardware maintance including receiving daily parts transactions, taking parts orders for engineers, and locating parts on a local and nationwide basis for use at client sites. Additionally, I maintained the local parts inventory, and ran diagnostic tests on possible defective equipment and made local repairs to said equipment. I also wrote software based on Pascal to streamline inventory tracking system inquiries and orders.
1985 to 1988 University of Nevada – Las Vegas
Las Vegas, Nevada
Student Operator (6/85 to 7/88)
Environment: Cyber 172/830, VAX 11/750, Sun 3/280, Harris H-800 mainframes and associated peripherals.
Interpreted trouble logs, processed student accounting and other administrative functions as directed by key employees, performed routine maintenance of tape drives, printers, etc. I also performed diagnostics to assist field engineers with their duties.
1985 to 1988 U.S. Environmental Protection Agency
Las Vegas, Nevada
Computer Specialist (9/85 to 7/87)
Environment: CDC 830, VAX 8650, Job Control Language, RTIRIM (SQL) database, Fortran 66/77 and C programming languages
I maintained and provided access to various data base(s) for use in the Offsite Radiation Exposure and Review Project which gathered data from 1950 through 1963 Nevada Test Site aboveground nuclear testing. Provided data entry and correction of information stored in data base(s). Wrote programs and procedures to allow other government and state agencies to access said information and to ensure proper safekeeping of data. I trained new users on system usage along with backup support for Los Alamos National Laboratory on this project. I also converted above database and programs to function on a VAX 8650 when the CDC 830 was removed from U.S. Department of Energy facility located in Las Vegas.
PROFESSIONAL WORK EXPERIENCE (cont)
1982 to 1985 University of Nevada - Las Vegas
Las Vegas, Nevada
Computer User Assistant (9/83 to 6/85)
I provided assistance to students on utilization of CDC 172/830, VAX 11/750, Harris H-800, and Apple 2E Computers. Provided answers to student programming questions and assistance in debugging programs. I also maintained laboratory computer equipment and provided software assistance to students via phone inquiries.
Student Tutor (6/82 to 8/83)
I provided one-on-one tutoring for students utilizing the Academic Advising and Resource Center using both BASIC and Fortran languages including syntax, design, optimization of code, and debugging.
Contact this candidate