Good afternoon everybody,
I am a CISSP looking for a hands on infosec role that will allow me to
use my 7 years of experience to help shape the technical, procedural, and
political aspects of security. I live in Arlington, VA and am searching
for a position in the metro DC area.
I have extensive experience in vulnerability assessment, risk management,
and system hardening as well as creating and evaluating security models at
worldwide locations, dealing with virus outbreaks, and evaluating new
security technologies. I have excellent time management skills and I am
adept at dealing with people of diverse cultures and technical
backgrounds.
Below is my resume for your review. I will also provide a .pdf or .doc
version of my resume upon request. Feel free to contact me at any time.
Thomas Frazier
[EMAIL PROTECTED]
(703)527-2711
---------------------------
Resume for Thomas Frazier
---------------------------
THOMAS FRAZIER, CISSP
850 North Randolph St.
Apt 824
Arlington, VA 22203
(703)527-2711
[EMAIL PROTECTED]
OBJECTIVE
To further my commitment to the area information
security or computer forensics with a focus on
enterprise solutions.
SKILL SETS
Security Tools
Cybercop, Symantec ESM, Entrust PKI, Ethereal, ISS
Internet Scanner, ISS System Scanner, McAfee
Anti-Virus, nessus, nmap, Retina, SARA, Sygate,
tcpdump, Whisker, Zone Alarm, Black Ice, various other
black/white/greyhat security tools
Software Tools
Apache, BMC Patrol, C/C++, DCE, DHCP, HP Openview, IBM
Netview, ipchains, Kerberos, LDAP, Legato Networker,
Netscout, Oracle (RDBMS/NCA/WebDB), Perl, PGP, PMDF,
Python, Saint, Samba, SATAN, Sendmail, Shell
scripting, SSL, Tripwire, TruCluster, Visual Basic,
Visual C
Operating Systems
Solaris, Linux, OpenBSD, Tru64, Windows NT, Windows
2000, Windows 95/98, Irix, AIX, Ultrix, MacOS, IOS
Hardware
Compaq AlphaServer, Sun Sparc, SGI MIPS, Intel x86,
RS6000, Compaq HSZ, RAID, fibre-channel, DLT library,
Apple G-series, Cisco routers and switches, Cisco VPN,
Kronos timeclocks
WORK EXPERIENCE
7/2000 � 12/2001*
Croop LaFrance @ Xerox
Rochester, NY
Senior Systems Specialist within Corporate Information
Security
� Senior Unix/NT/Network security expert on a $12M
security audit project
� Developed internal risk assessment calculator for
Unix, NT, intranetworking systems and Internet facing
devices
� Analyzed packets via tcpdump, Snort, and custom
software to monitor content, intrusion attempts, IP
datagram irregularities, and denial of service attacks
� Headed research of system integrity and threat
assessment tools such as ISS RealSecure and Tripwire
� Assessed client integration issues for pilot
implementation of Entrust Public Key Infrastructure
(PKI) solution
� Developed recommendation for new firewall products
in a secure lab environment through rigorous testing
of exploits and security tools
� Created detailed vulnerability reports for NT, Unix,
and network systems for worldwide locations based on
Cybercop, ISS Internet Scanner, ISS Database Scanner,
Nessus, and Whisker
� Researched, designed, tested, and distributed new
technical solutions for exceptions to policy
5/1996 � 6/2000
Rochester Institute of Technology
Rochester, NY
Lead Systems Programmer within Information Technology
Services
� Provided technical direction for 7 person team
� Installed and configured NetRanger intrusion
detection system for inbound/outbound traffic
� Procured and installed $200,000 BMC Patrol system
integrity and intrusion detection software on all
critical servers
� Lead software/hardware installation for $5M Oracle
10.7NCA ERP system
� Managed 50+ servers, over 3TB of data, and 60+
highly available services on Digital Unix, Solaris,
and NT servers
� Primary focus was 24x7 availability and security for
a wide range of applications and services
� Handled support of DCE/LDAP based single sign-on
directory service for 20,000+ user population
� Designed secure Legato backup system for enterprise
systems
� Contact point for security incidents
11/1995 � 4/1996
CSH Labs
Rochester, NY
Programmer within Application Development Team
� Application consultant
� Co-designed a data entry application for an
insurance company client
� Assisted in customer relations to acquire
application requirements
* After fulfilling my contract with Xerox I returned
to school full time at R.I.T. between January and
August of 2002.
EDUCATION
8/2002
Rochester Institute of Technology
Rochester, NY
� Bachelor of Science in Information Technology
(August 2002)
AFFILIATIONS
ISC2 (http://www.isc2.org)
� CISSP certification
ISSA (http://www.issa.org)
� Member
Computer Science House (http://www.csh.rit.edu)
� Chairman of the Board � 6/1996 � 6/1999
REFERENCES
Available upon request
