Architecture & Security
Security assessments & frameworks: OWASP, CWE, CVSS, NIST CSF/800-53/800-63
SAST/SCA/CI/CD, Threat modeling, and overarching SDLC
Cryptography: encryption, PKI, key management & derivation, password management, steganography
DLP: Transport and message-level security, Data at Rest
When helping organizations to architect or implement specific solutions, security also depends on the underlying stack. I worked with:
Proficient on HTTP-TCP-IP stack and DNS
Unix/Apache and Windows Server/.NET/IIS server models
SQL and mySQL
Active Directory/Microsoft CA/Exchange ecosystem
Machine learning
Deep learning: CNN, MLP
pyTorch, TensorFlow, Keras
Regression, classifiers, generative networks (GAN)
Genetic algorithms, neuroevolution
Product & software engineering
I work with numerous product teams in an agile environment touching cloud and mobile platforms.
Cross-disciplinary Scrum teams
Apps and services on iOS, Android and Windows devices, BYOD and corporate
Python, Java, SQL, PHP, XML, HTML and JavaScript development
Comfortable in Vi, Eclipse, VSCode, C/C++ and Matlab
Self-produced dozens of websites prior to full-time positions (see Gallery)
Satellite chains & physical/data link layers
These were some of my favorite courses.
802.11, Ethernet, UMTS & cellular networks
DVB-S/RCS, GPS positioning
Link budgets, transponder footprint
Constellation design and error correction
Cable and radio modulation, DSP, wireless transmissions
Multiplexing (OFDM), channel coding
Network & stochastic models: beyond the IP stack?
As a deep enthusiast for statistics, I greatly enjoy modeling and analyzing distributed systems and networks.
Markov chain theory and queueing systems
Linux based VLANs
Software-Defined Networks (Openflow and experimentation platforms such as Emulab)
Peering and BGP
ATM, SONET/PON, and AFDX protocols from the internet core to avionic networks
QoS and traffic engineering
internet router design and core line rate firewalls with Jim Xu.