[prev in list] [next in list] [prev in thread] [next in thread]
List: security-jobs
Subject: Seeking Position, willing to relocate worldwide for the right
From: Emerson <et () c4i ! org>
Date: 2001-10-29 17:41:10
[Download RAW message or body]
Hello everyone,
Following a spot of local market retrenchment and a glut of talent locally,
I have decided to broaden my search for a new postion to a worldwide one. I
am currently located (and fairly happy) in Calgary AB, Canada. I am a UK
citizen and can relocate practically anywhere for the right position.
I am looking for an information security analyst/architect postion, with
decent compensation, somewhere in the english speaking world with a decent
amount of travel to interesting places. Postings in Canada, Europe and
Australia will get priority but anywhere else will be considered.
I have a approximately 6 years of professional IT experience with the last
4 being spent in a professional IT security capacity.
I attach a copy of my CV in ASCII text, if anyone would like a word
document version, please let me know via e-mail and I will send one out to
you.
Thankyou for your time and consideration.
Emerson
["Emerson Tan-latest.txt" (text/plain)]
Emerson Tan
Apt. 3 335-9A St. NW
Calgary AB
T2N 1T7
Canada
Telephone: +1 (403) 283 1884 (home)
E-mail: nutter@technologist.com (personal mail forwarding)
Nationality: UK citizen, Work Permits held for Canada, United States of America.
Birth Date: 02/06/1975
Education
1993-96
BSc Planetary Science, University College, London
1992-93
Completed First year of BSc Biomedical Science and Engineering at Queen Mary and \
Westfield College. University of London
1985-92
Bristol Grammar school. Obtained A-level Grades: Biology A+ Special Paper \
Distinction, Physics D, Chemistry D.
Work Experience
March 99-September 2001
Arthur Andersen LLP
Senior Consultant, Computer Risk Management Division.
* Analysis of Internet banking project for the National Bank of Canada (Banque \
Nationale du Canada): Provided both technical audit and threat and risk advisory \
services for information security unit of the bank regarding the security of the \
banks consumer Internet banking services. The bank is a Franco-phone institution, and \
much of the work was carried out in the French language. (Montreal, \
Canada)
* Analysis and design assistance for the National Bank of Canada, for a total Network \
Architecture overhaul. This involved designing an IP network to support the bank's \
activities, both within Canada and abroad, as well as incorporating PKI, easy \
scalability for E-Commerce applications and strong security to protect banking \
applications, and services. The bank is a Franco-phone institution, and much of the \
work was carried out in the French language. (Montreal, Canada)
* Network Security and performance consultancy for the worlds leading provider of \
on-line academic training. Following the loss of its upper echelon technical staff \
this 900 million USD (at the time) valued dot-com company suffered serious network \
and server problems. These were rectified, a secure environment implemented and the \
enterprise network redesigned to accommodate further growth from 200 to 600 \
workstations and servers. This required the co-ordination of several groups of \
consultants and the clients remaining technical staff. (Los Angeles, \
California)
* Analysis and review of the Internet security policies for TransCanada Pipelines. \
Also provided advice on enforcement of these policies, technical security \
architecture and threat and risk posture of the client. (Calgary, \
Canada)
* Masterminded and executed network penetration testing and attack simulation \
engagement for a large north american Federal Depository Insurance Corporation \
insured bank (30 billion USD in holdings). This engagement involved assessing the \
security from external and internal attack of the bank and it's supporting operations \
and units in 8 states. (Omaha NB, Kansas City MO)
* Analysis, audit and review of the policies and technical architecture of the \
following systems and processes at Petro-Canada (Canada's largest oil company): \
E-mail, Point of Sale systems, Corporate security policies, use of cryptology to \
protect sensitive employee information, deployment of PKI and single sign on \
technologies. (Calgary, Canada)
* Assessed the security status and strength of applications and platforms of a \
leading E-Commerce import/export service provider. This involved both the analysis of \
the applications at both the higher architectural level and the lower platform level. \
(San Francisco, CA)
* Developed Training materials and work plans for the following service offerings \
within Arthur Andersen LLP: Network Penetration Testing services, Network Security \
Analysis services, Technical Telephony system Security review services, Computer \
Crime investigative services, Computer Intrusion/Emergency Management services. \
(Firmwide, Global in scope)
* Provided Engagement technical support for Project Safeguard. A U.S government \
(presidential directive 63) project to protect U.S government assets from intrusion \
and other types of Information Warfare attack. This ongoing project involves the \
testing, review and analysis of hundreds of global networks belonging to the U.S \
government. Provided technical remote support for teams working in the U.S and all \
over the world.
* Provided technical consulting support for crisis management for a leading \
Californian Internet Service Provider. Assisted project team in securing systems \
after the acrimonious departure of senior technical personnel at the client firm. \
Mitigated risk associated with potentially hostile former employees. (San Jose, \
California)
* Acted as network and security architect for a document sharing and co-operative \
group working system for the automotive industry. This system will automate the \
ISO9000 documentation for the big 3 auto makers in the US, and have to cope with \
traffic loads of up to 4 TB per week, and have to preserve documents for up to 10 \
years, while enforcing rigorous security, and confidentiality. It is envisaged that \
this system will evolve into a massively distributed system utilising advanced \
concepts in swarm intelligence to minimise human intervention and maintenance.
Oct 98-Dec 98
Diligence Information Security
Information Security Specialist
* Analysis of the Transact open E-commerce system for Altrum Technologies: provided \
advisory services about security mechanisms used by system components (user \
authentication and certification) and relevant protection systems for a gateway to \
the e-commerce transaction processing and service delivery systems; also system and \
network security auditing including penetration testing.
* Technical analysis of security products for on-line banking systems used by UK \
banking institutions
* Principal consultant for security network gateway design, installation and \
configuration of firewalls and content security software (at Pall Europe and Grohe \
Water Technology GmbH).
* Advised several clients on compliance with the BS7799 Information Security and risk \
management standard. Originally a code of best practice for organizations dealing \
with sensitive data, this standard forms the basis of ISO standard \
ISO17799.
* Advised several clients about the methods necessary to become complaint with the \
Data Protection Act and other European data protection legislation. (It will be \
illegal to export personal data, as defined under the act, to countries outside of \
the EU without similar legislation or protection measures.)
Mar 98 - Dec 98
Orchid Micronics UK
Systems Test Engineer (part time)
* Tested Motherboard, 3D sound and Graphics Accelerator hardware and engineering \
drivers as part of a local compatibility testing effort. This involved testing \
different Freeware operating systems on pre-production engineering hardware, and \
testing such activities as over-clocking on Micronics designed hardware. \
Orchid/Micronics was bought by diamond multimedia in late 98 and the programme \
discontinued as effort switched US based testers.
Mar 98-Oct 98
Techex Communications (now ATL networks)
Technical Consultant
* System and network audits for both internally generated clients and BTnet (The Data \
Communications arm of British Telecom)
* Designed secured gateways for Btnet clients incorporating firewalling, content \
security (filtering) and user monitoring.
* Planned e-commerce implementation for BTnet clients, PGP and secure messaging \
projects, anti-virus software deployment planning and the company's X.400 based \
Messaging service INEX.
* Responsible for assessment of security products and the review of security \
solutions proposed by third parties, as well as the running of INEX (only in the \
event of a crisis).
* Principal consultant and project implementation leader for pan European frame relay \
network security audit, reporting to Director Information Systems at Sony Information \
Systems Europe.
* Secure Internet gateway architect at AON Europe
* Secure remote access gateway design for Surrey Police Force
* Network performance and security audit, principal consultant, and project leader, \
reporting to Financial Director at WHS group
* E-mail and web content filtering implementation, principal consultant for CRS group \
* Principal consultant for implementation of network security audit at Scotsman \
Newspapers
* Secure Internet gateway architect, reporting to Director Information Systems \
Europe, Quaker Oats UK
Oct 97-Dec 97
Virtual Internet
Contract Systems Administrator
* Performed initial architectural design of the Vi Merchant e-commerce system
* With a team of administrators, I assisted in the migration of 3500 web sites hosted \
by the firm from the Linux platform running the Apache Webserver to Solaris running \
the Zeus Webserver
Mar 97-Apr 97
Mosaic Communications
Contract Consultant
* Asked to participate as a consultant in the formation of this local start up ISP \
which provided hosting and e-commerce services to local businesses.
* Provided recommendations on equipment, network configuration, and e-commerce \
systems
Jan 97-Mar 97
Web Direct
Contract Account Manager
* Negotiated several schemes with local and national Internet Service Providers to \
provide services and referer credit schemes.
* Designed and built the firm's intranet and internet services
Voluntary Projects
Januray 2001-Present
Packetstormsecurity.org
Project Director
* Currently serving project director of the worlds largest open source/ full \
disclosure security website http://www.packetstormsecurity.org
* The site and its archives provide information security materials and tools to the \
information security community and public for no fee. The site is run entirely on \
services provided Gratis.
* Packetstormsecurity.org is a not for profit organisation and pays no salaries or \
expenses.
* Currently manage an open team of 10 volunteers around the world, managing 2 data \
centres and 3 mirror sites.
* Currently designing and building a failure and attack resistant mirror network.
* Gained experience of incidence response and reaction to Distributed Denial Attacks.
IT Skill Set
Advanced:
Linux (redhat, debian), Content technologies MIMESweeper, ISS RealSecure, ODS \
Networks fast / gigabit Ethernet switching hardware, Windows NT4/2000, Windows 95/98, \
Windows 3.11, RMON2 probes (netscout and ODS), PGP (and associated public key \
infrastructure), Microsoft office, Computer Misuse detection system (CMDS), Microsoft \
Internet information server, TCP/IP protocol suite, OpenBSD, FreeBSD, snort \
lightweight IDS, SNMP network management, TCP/IP and IP routing techniques, Unix \
Forensics techniques.
User level:
Firewall-1 (routine tasks such as configuring rule base), Solaris 2.51, X.400 based \
MTA's (ISOCOR and Advox Omnigate), HP Openview, Novell netware 4.x, AIX4.x, CISCO \
routers, C.
Exposure:
IRIX, HP-UX, VMS, SAP, Oracle, Visual Basic, Java.
Visas and Working Right Held
* British Citizen, therefore entitled to work in the European Union
* Canadian work authorisation. Entitled to work in Canada for Arthur Andersen LLP \
until 2003.
* United States Work Authorisation, Entitiled to work in the United States of America \
until 2003
---
"Life is understood backwards, but must be lived forwards" - Soren Kierkegaard
"Goodness speaks in a whisper, evil shouts" Tibetan proverb
Emerson
Freelance Thinker.
nutter@technologist.com :PGP pubkey on request
ICQ 13396569
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic