Clearwire - Kirkland, WA (2006-present)

Principal engineer for the design and implementation of the first WiMAX AAA in the United States. Built the first system using FreeRADIUS and MySQL with Apache/PHP XML inter- faces for provisioning. Worked with Bridgewater Systems to design, build, and deploy the second AAA system. Brought together disparate teams and resources to solve complex problems and deliver a sleek, efficient system that allowed WiMAX customers proper network access while balancing marketing, billing, and support goals.

• Designed integrated usage mediation system, bringing together disparate groups to track, collect, process, and present customer usage traffic.
• Designed, built, and deployed WiMAX AAA system.
• Managed deployment of Bridgewater AAA system for WiMAX production.
• Managed Core network security audits.
• Supported wireless device integration and testing for WiMAX
• Built strong interpersonal relationships and used those to successfully execute complex designs involving multiple teams.
• Managed certificate (PKI) system.

T-Mobile USA - Bellevue, WA (2004-2006)

Served as the Lead Engineer for several key security projects. Responsibilities typically included requirements gathering, design, and development of the engineering solution, documentation of the results, regular communication within the team and with upper management.

• Designed and deployed the security for a corporate-wide project to be the first company in the world to rollout UMA.
• Assessed the risks of the design, weighed those with the business value and impact to make design decisions.
• Headed the engineering of the overall security as well as the 500 Tunnels/sec. 500,000 concurrent tunnels Security Gateway.
• Supported wireless device integration and testing for UMA
• Designed Host IDS for core network rollout. Prepared RFP, performed product evaluation, designed and executed test plans, contributed to final selection, and engineered implementation.
• Designed next-generation firewall selection including selection criteria, test lab environment, RFPs.
• Managed security audit of UMA network.
• Provided cryptographic assessment of EAP-SIM, found protocol weaknesses and published (internally) the findings, resulting in appropriate security measures to compensate for the deficiencies.

Nordstrom, Inc. - Seattle, WA (2004)

Served as Lead Engineer responsible for the security of multiple vital software applications. Responsibilities included advising application architects and engineers on encryption and key software security issues, security and risk management documentation, cross-team/ departments communication and coordination.

• Designed and worked with Java developers to implement code-level security and encryption in the Nordstrom customer database management software (Point-of-Service and "Personal Book") for SOX compliancy. Designed key management and encryption software changes.
• Designed and implemented cross-functional program to evaluate Microsoft security vulnerabilities for all Nordstrom Windows server systems and coordinated patching timeline and execution.
• Designed database for cross-platform patch management system, including likelihood of occurrence, consequence, and asset value.

AT&T Wireless - Seattle, WA (2003-2004)

Served as Security Engineer for the customer data network. Responsible for verifying and coordinating audit compliance for all teams on Core Network, communicating between de- partments and to upper management.

• Provided foundation for network-wide security audit (SOX) compliance by scanning 50,000-host Wireless Services Core Network. Developed an application (PHP, Oracle, Apache) for storing results and providing statistics about vulnerability exposure and risk.
• Mitigated and prevented computer virus outbreaks by planning and implementing network wide virus mitigation system.
• Maintained maximum uptime, system stability, and threat prevention by running Windows OS patching system with alerts, severity matrices, and owner coordination.

Network Security Consultant - SLC, UT (2001-2003)

• Performed network security analysis for clients including all areas of technical security, risk assessment, and auditing.
• Performed network and application audits.
• Managed development and implementation of security policies and procedures.
• Ensured continuing maintenance of competitive information security practices.

Digital Signature Trust - SLC, UT (2000-2001)

• Audited overall security and evaluated software for security implications.
• Built and maintained a critical network with several hundred servers for PKI certificate issuing, verification, and signing for several thousands clients.
• Effectively worked with teams to implement a "hot site" failover.
• Implemented centralized access-logging system to quantify intrusion attempts and increase network security, customer privacy.

The Salt Lake Tribune - SLC, UT (1998-2000)

• Planned, installed, maintained company-wide, system/network security for Utah's largest newspaper running hundreds of servers and more than a thousand clients.
• Created security infrastructure with firewalls, IDS, virus detection, OS-hardening.
• Wrote security and network tools. Performed application audits.