SUMMARY
Son to a programmer and a stock broker, I've been programming since 1983 in many languages, assisting teaching C/Assembly in 1991, founding two peer-to-peer companies,
one reaching a $40,000,000 market capitalitaion.
having applied for patent of a UDP based peer to peer (P2P) distributed file sharing and streaming protocol in C++.
In 2010 I discovered microtransactions exploit in Bitcoin CVE-2010-5140
I intend to use my time to resist censorship via the development of decentralized communication technology. 20 years ago we'd have laughed if anyone said we'd still be going to centralized websites by now. I want to help us all move past that. "Information wants to be free." we would say.
I am a skeptic, similar to many in Bitcoin and security culture.
I tend to focus more on reducing risk in the form of identifying security weaknesses, single points of failure in reliability, and scalability by identifying actual bottlenecks to prioritize efforts. Also by reducing maintenance costs/risks with a disdain for repetitive maintenance anywhere it can be automated.
I believe Rust is the right language for me at this time, possibly compiling to WASM, as Rust is the first popular and fully domain inspecific language since C++ or C which I enjoy.
I prefer the command line as graphical interfaces are a dead end to automation and I am lazy in a good way. I use vim.
I prefer succinct code .
The most powerful freedom is speech -- ( the pen is mightier than the sword.)
The most powerful speech is money (a banker's pen is the mightiest pen.)
Blurb about when you should use UDP (like p2p apps)
EMPLOYMENT
Blockchain Engineering / Lamina1
September 2022 - October 2023
- Forking Avalanche, combining many repositories and rebranding, in Golang and Github workflows
- Modifying the fork to run independently of main Avalanche network
- Deploying faucet, Blockscout, and nodes using Ubuntu's package management (apt) , to run on Hetzner (aka your-server.de)
- tuning subnet EVMs for high TPS
Infrastructure Engineer - Sneller, Inc.
October 2021 - August 2022
- BASH, awk, jq, sed, Golang
- Github workflows
- vector.dev
- chicken scheme
- Centos
- Ubuntu
- SQL
Solidity (blockchain) Developer - DXDao
March 2021 - October 2021
- Solidity testing/development with truffle, hardhat, echinda
- Some Rust debugging
- Some Rust debugging
Security Engineer - Doctor on Demand
August 2019 to December 2020
- Recommending standard security concepts such as password hashing and defense in depth to developers
- Auditing Python Django source code and implementing remediations for security vulnerabilites and cryptography standard practices
- Assisted with workflow improvements to infrastructure as code and change control to reduce risk and improve auditability
- Postgres slow query analysis
- JSON log analysis using JQ
- Architected end-to-end encryption of confidential data using a chain of symmetric and asymmetric keys
- Wrote two cases of password hashing in python/django.
- optimized some SQL queries
Security Engineer Paubox
November 2018 to August 2019
- Increased reliability 10x in 6 months by removing points of failure, adding redundancy and exception handling/logging, to C, Ruby, PHP, Perl, and BASH
- Reduced server costs by 50%
- Discovered and mitigated SQL injection vulnerability that could result in privilege escalation
- Maintaining 50 mostly unique systems operating web services, webmail, postfix SMTP, IMAP, and POP3
- Auditing Ruby and PHP source code for security best practices
- Deployed syslog/rsyslog central logging
- Wrote a tool to import various server configurations into a deduplicated central repository, and deploy updates, with conflict detection against manual server side changes
- Fixed bugs in PERL, Python, Javascript, C, and Ruby
- Wrote a configuration consolidation tool in Python
- Postfix administration and log analysis
- Wrote predictive disk space monitoring in BASH/AWK
- Wrote logging to custom mysql tables in real time in rsyslog
- Wrote snapshot/volume tagging in python
Security Engineer / Blockchain - New Alchemy
July 2018 to October 2018
- Produced security audit reports for client's Ethereum Solidity (ERC20 mostly) blockchain smart contract / cryptocurrency source code, of network security concerns for each client, using truffle, solhint, git, jq, solc, mith/mythril. Ex: here and here
- Automated detection of non use of OpenZeppelin's SafeMath, dividing without using remainder, non view functions without an emit call, and dividing before multiply; by adding lint rules to solhint in JavaScript
- Automated and templated initial report generation by writing custom ESLint output formatter for solhint to match company style
Security Engineer (contract) - IBM KeyProtect
April 2018 to May 2018
- Wrote in Go (Golang) for IBM's KeyProtect service
Supercomputer Engineer / Security Team - Cray, Inc
June 2017 to April 2018
- Automated build and test of security patch update process using BASH shell scripting on Linux, for National Laboratories and similar supercomputing systems
- Streamlined and improved reliability, maintainability, and security, of Python based SUSE security patch deployment process, by removing dependencies, 100s of lines (75%) of code, and adding fail-fast logic in place of fail-silently logic using offensive programming methods (assertions and strict data types) to focus on business objectives
- Researched impact of zero-day vulnerabilities to recommend patch schedules and/or mitigations
- Reported internal network and product security vulnerabilities and remediations to appropriate departments
Security Engineer / Red Team - Code42, Inc
August 2013 to December 2016
- Discovered over 12 critical network security and application security (AppSec) vulnerabilities in Java/J2EE code, network/LAN/VLAN and firewall configurations, and cryptography implementations (encryption, TLS, public-key cryptography), using source code auditing (static analysis) and dynamic analysis
- Directed mitigation of vulnerabilities through resolution with IT, Development, and Operations teams
- Performed threat modeling of entire attack surface through the layers of access controls to critical data targets in acyclic directed graph format (using Graphviz)
- Audited PostgreSQL database schema for proper credential storage and access controls
- Overhauled and streamlined company firewall rules using iptables on Linux
- Assisted Marketing with security related customer facing commitments for consistency with existing architecture, accuracy, and appeal to security minded audiences
- Researched impact of zero-day network security vulnerabilities for patch scheduling and mitigation
- Assisted in implementation and application of PCI and OWASP controls
- Oversaw and verified deployment of critical security updates / patches of third party code
- Automated business continuity management (BCM) and disaster recovery (DR) using Semantic MediaWiki (SMW / semanticwiki), enabling each role to document expected maximum downtime, with DR plan, last DR test date, and calculated cumulative net agreed upon downtimes, displayed on each service's company-wide viewable page. Implemented generated summary page of tabulated verification dates and maximum downtimes for easy management review
- Automated Nessus to JIRA issue ticket creation to decrease vulnerability response time
- Tools used: Nessus, BurpSuite, nmap, tcpdump, curl, netstat
Storage Engineer / Site Reliability Engineer Code42, Inc
May 2011 to August 2013
- Migrated DNS configurations into change control process using git
- Reduced per-server downtime and data loss by 99% by bringing Linux systems up to standard practices
- Improved office internet connectivity using Linux's traffic control (tc) to support 100s of employees over a single 10/100Mbps connection (while waiting for fiber to be run)
- Presented with a PIN by the CEO at 500 person all company meeting for identifying $6,000,000 of unused data center hardware
- Diagnosed service bottlenecks in Java/J2EE code using netstat, strace, tcpdump, curl, traceroute, iostat, etc
- Led a team of 5 in system administration of $30,000,000 of datacenter servers
- Automated resolution of 90% of on-call pages for server issues, with automated JIRA ticket filing with debugging information to reach pro-active resolution
- Recovered XFS file systems corrupted by defects in hardware RAID cards, using custom C code
- Scaled performance and reliability of primary PostgreSQL (Postgres) SQL relational database by optimizing SQL queries, and simply adding more RAM (after others had attempted many more complex, costly, and downtime causing solutions)
Full Stack Architect - ProfitSee
January 2011 to May 2011
- Implemented OAuth client to pull XML data from web service into SQL database (ETL) using LAMP ( Linux, Apache, MySql/MariaDB, Python )
Software Architect - self
August 2003 to January 2011
Co-founder / Senior Full Stack Architect - P2Pusa.com
November 2001 to August 2003
- Designed website, payment processing, and peer-to-peer (P2P) distributed file sharing and video streaming application in Java, overseeing 1 developer
Founder, Vice President, Director, Lead Architect - Oth.Net (aka the Kermit mp3 search)
April 1998 to November 2001
- Founded top 1000 web search engine earning $500,000 of ad revenue in first 2 years, reaching over 1,000,000 daily page hits from over 100,000 daily users using C (for indexed substring search, FTP client, and web crawler), AWK, RegEx, and BASH shell scripting, on a single Linux server
- Raised $2,768,000 in venture capital
- Took public (IPO) to a peak market capitalization of $40,000,000
- Mentioned in The Wall Street Journal page B1, center article, June 15, 1999 and several books
- applied for patent for UDP based peer to peer (P2P) distributed file sharing and video streaming protocol in C++
- Designed and implemented Digital Rights Management (DRM) controls using DNS lookups for scalability
- Developed click-through optimizing ad rotator and billing system in C
EARLY YEARS
- 1996 Switched from DOS to Linux
- 1990 Founded high school's C and Assembly (ASM / Assembler ) language programming course
- 1990 Out-typed the Apple IIe word processing software in typing class
- 1990 aced math tests without studying
- 1988 Automated solving word-finds for Spanish class
- 1987 Automated my play in various multiplayer online games using in TELIX SALT (C-like language)
- 1985 Wrote a bootable terminal program in Assembly (ASM / Assembler) that fit on a boot sector
- 1983 Wrote in BASIC on a Commodore 64
ORGANIZATIONS
- Organized The Twin Cities C/C++/Assembly/OSDev/embedded meetup
- Founded Linux Desktop User Group
- Implemented and deployed a reputation based distributed governance system for IRC chat rooms, written in AWK/GAWK, used on Freenode's ##Economics IRC forum 2006-2011 growing it to over 100 simultaneous users, ##Psychology forum 2006-2011, and #Bitcoin forum (2011) with over 900 simultaneous users
This resume is built with GNU make and vim.