Hosting Provided By

Seasoned Security Expert Available

From: security specialist <securecatalyst(at)hotmail.com>
Date: Thu May 15 2003 - 14:36:57 EDT

Hi All,

I am the victim of recent layoffs, sad !

I have sound expertise in firewals, ids systems, wireless security, forensics analysis, vulnerability research and exploit development, security policy development, secuirty audits, penetration and attack tests ( both application layer and network layer) and many more.

I had experiences in product management with market research, SRD/PRD/MRD preparations, market positioning , presentation to C level people and high level managers.

Have goog business acumen, project and human management skills in an internationaly diversed enterprise environments as well.

I am currently looking for a position in the Bay Area, anywhere in west coast and east coast.

I am copying some of my technical skills below.

If you think i might be a good match for your company, please let me know to send a detailed resume.

Do you need help?

Resume collectors, please do not reply to this e-mail, as i am looking for some serious inquiries now.

Have a nice day,

                                     Technical Skills

Programming Languages:
C, C++, PASCAL, DELPHI, VBASIC SCRIPTING, ASSEMBLY, MATLAB, ADA95, JAVA SCRIPT, SQL, SHELL SCRIPTING, PERL, HTML Networking:
TCP /IP, VLAN, VTP, STP, VPN, GRE, L2TP, PPTP, IPSec, VRRP, HSRP, BGP, RIP, EIGRP, OSPF, SNMP, x.25, WAN, Frame Relay, ATM, RMON, Ethernet, WLAN, STP, BPDU, CDP, IDS, IDP, IPS, DHCP, DNS,ARP, LDAP, RADIUS, CHAP, TACACS, MS Active Directory, PGP, PKI, X.500 directory services, X.509 certificate services ,SmartBit synthetic network traffic generator

• Have implemented CheckPoint, Gauntlet, eTrust firewall, RadGuard, Cisco, Cisco PIX, S/WAN. VPN’s across networks between similar and different devices.

•	Implement and managed firewalls, CISCO ACLs.
•	Implemented global load balancing system using DNS, F5 BigIP, 3-DNS 
solutions.
•	Benchmarked, Tested, Deployed, fine-tuned, managed IDS, IPS via ISS, 
Snort, ManHunt, Intruvert, TippingPoint, NFR, OneSecure, SourceFire and etc.
•	Audited, tested, Cisco Catalyst switch and Layer2 security. (VLAN, VTP, 
STP, Arp Poisoning, Sniffers, Ettercap, Dsniff etc.)
•	Designed multinational networks with emphasis on security, including DMZ, 
Production networks, QA, Test, Lab, and COE networks.
•	Deployed and managed PKI via PGP and NetTools PKI server for e-mail 
security, RAS solution via VPN, certificate   management
•	Expert / Familiar with plethora of  networking utilities: eTrust SSO, HP

Openview, IBM Tivoli, Solarwinds networking tools, Sniffer Pro, MRTG, Sitescope
• Assessed network utilizations, deployed NW load balancers via F5 (Big IP, 3-DNS ), DNS load balancing.
• Blocked and thwarted a large scale DDoS attack against corporate NW.

Security:
• Penetration and Hacking ( Firewalls, ACLs, Cisco, Networks, IIS, Apache, SunOne Web servers, Oracle, MSSQL, MySQL, UNIX ( linux, solaris, AIX, freebsd) Windows, SQL injection, layer 2 hacking with arp poisoning, session hijacking, sniffers, web session id hijacking, cookie poisoning, IDS evasion techniques and so on)
• Security Assurance: Prepared security compliance documents for the following systems and very hands on experience with these systems.

•	Secure Coding Practices
•	Corporate Security Policy based on BS7799 & ISO 17799 standarts
•	AIX, Sun Solaris, Linux ( Redhat  and FreeBSD) servers
•	Sun One Application Servers
•	MS Exchange Servers / MSSQL Servers
•	Oracle 8.x and 9iAS Servers / DB2 Servers
•	IIS / Apache Servers
•	Windows NT / 2000 / XP Servers

•	Benchmarked, tested, deployed, fine-tuned, managed HIDS systems with 
Okena, Entercept, Tripwire, ISS RealSecure , eTrust Access Control.
•	Modified publicly available proof-of-concept vulnerabilities for UNIX and

Windows environments for penetration and attack test engagements. Written a windows stack-based buffer overflow code that gives back a remote system access via piping stdin, stdout, stderr into windows named-pipes. • Quite familiar with hacking communities, hacking tools. ( nmap, nessus,

nikto, websleuth, libwhisker/whisker, IDA Pro, dsniff, ettercap, ethereal, 
cybercop scanner, ISS internet / db scanner,  appdetective for database 
security, cygwin, satan, saint, assembly language, retina, key loggers,

Trojan programs, windows / NetBIOS hacking tools / techniques, CASL, firewalk, hping, fragroute, ISIC, windump. Tcpdump, ethereal, ettercap, sidestep, netcat, queso, snmpwalk, L0pht Crack, John the Ripper, password crackers / brute force attack tools and many others.) • Benchmarked, tested, deployed, managed security incident management solutions: ArcSight, e-Security, Guardnet NeuSecure, Netforensics, Intellitactic and others.

•	Deployed and monitored honeypot systems using Cybercop Sting and ManTrap.
•	Performed forensics analysis on UNIX, Windows systems with volatile memory

recovery, hardware cloning and investigation with third party tools, system log and network traffic tracking. Prepared a forensic toolkit for UNIX and Windows systems.
• Encryption : Deployed office to office VPNs using Gauntlet, Checkpoint. Deployed corporate wise PGP with Netools PKI server. Implemented RSA SecureID tokens for RAS and web based solutions. SSH / SSL deployments and sound knowledge of public and private key security algorithms.

Special Interest:

• Vulnerability Research, Hacking techniques, methods: Local and remote system vulnerabilities. Playing with the published vulnerabilities, writing custom system exploits for UNIX and Windows platforms with Assembly, C, C++.

•	UNIX / Windows TCP /IP, socket programming with C, C++ and Perl.
Do you need more help? 
In addition to our free technical library, Pantek provides professional IT services to companies who utilize Open Source software:Learn more about Pantek's Technical Support offerings
Place an order for 24/7/365 Technical Support here
Learn more about Pantek, who we are, and what we do
Chat with a Live Operator
Related securityfocus.com Links
bugtraq
certification
focus-bsd
focus-ids
focus-ih
focus-linux
focus-ms
focus-sun
focus-unix-other
focus-virus
forensics
incidents
libnet
linux-secnews
ms-secnews
pen-test
secpapers
secprog
sectools
secureshell
security-basics
securityjobs
sf-news
vuln-dev
webappsec
Request more information about Pantek
•	Forensics analysis for UNIX / Windows systems.
•	Special research on intrusion prevention techniques. Also intrusion 
detection evasion techniques, testing TCP/IP stacks.
•	Research on Linux loadable kernel drivers, system driver programming, 
Windows system programming.
•	Application hacking, web, web services, database via SQL injection, 
session id hacking.
•	Eager to learn ASIC programming.
•	Black / White box testing techniques and methods.
•	Layer 2 and wireless security.

_________________________________________________________________

Protect your PC - get McAfee.com VirusScan Online http://clinic.mcafee.com/clinic/ibuy/campaign.asp?cid=3963 Received on Thu May 15 15:03:13 2003

This message: [ Message body ]
Next message: Brian Cahill: "How do I become a CISO?"
Previous message: Paul Ridge: "Cheif Security Officer (Paris, France)"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]

This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 14:07:29 EDT

Can we help you?