My name is Paul Osterwald. I am located in Southern California and I posses an extensive background in information security, security architecture design, LAN/WAN design and analysis and project management. I have also built and run Professional Service practices in the security and network arena.
I have written and taught courses on security and networking in the United States and the United Kingdom. I also have extensive experience in mentoring individuals in security and networking. I am looking for a position (either permanent, preffered, or contract) in the the Southern California arena. I am available immediately. Relocation is a possibility for northern Virginia, NYC, Dallas-Fort Worth, West Palm south to Miami. Paul Osterwald 419 Main Street #346 Huntington Beach, Ca 92648 (714) 585-1730 [EMAIL PROTECTED] SUMMARY Principal Information Security Architect and Network Engineer with extensive experience in comprehensive security solution design, testing and implementation from border routers through firewalls, VPNs, intrusion detection, application and desktop security. I have extensive expertise in information security program development and management, security operations, security technologies, policies, procedures and security incident response. I am also knowledgeable in the area of digital forensics. Real world security and systems engineering experience is enhanced by a solid background of WAN/LAN design and network analysis coupled with intensive training. I know how to lead AND follow. I am a solid team player. SKILLS Security Services * Firewalls: BorderManager, Cisco IOS Firewall, Cisco Secure PIX, CyberGuard, Firewall-1, Raptor, WatchGuard * Intrusion Detection Systems: Cisco Secure Intrusion Detection System, CyberCop Sting, Kane Secure Enterprise, NFR, RealSecure, Snort & WinSnort * Penetration Testing Tools: ISS, Cisco Secure Scanner, CyberCop, SATAN, Nessus, NMAP, Kane Security Analyst * PKI, Encryption and Authentication: Cisco Secure Access Control Server, PGP, RADIUS, RSA Keon Server, SecurID, TACACS+, Verisign * URL Filtering, Monitoring and Virus Protection: WebSense, WebTrends, Norton Anti-Virus (Symantec), Trend-Micro Anti-Virus * VPN: Cisco VPN Concentrators 3000 and 5000, Red Creek Ravlin (3300, 5300, 7150, 7160, Client Manager, Node Manager, eDirector) * Software Tools: eOrchestrator, PentaSafe Operating Systems & Software * Network Operating Systems: NetWare: ELS, 2.x, 3.x, 4.x, 5, NetWare for OS/2;NT: 3.1, 3.5x, 4, 2000; Unix: UnixWare, BSD (4.3, 4.4), SVr4, Linux, HP-UX, Solaris (2.5, 2.51, 7, 8) * Desktop Operating Systems: DOS: 1.x - 6.x; Windows: 286/386, 3.1, 3.11, Windows for Workgroups, TPC/IP Subsystem, Win32 Subsystem, 95, 98, NT Workstation (3.1, 3.5x, 4, 2000, XP), Thin Client (WinTerm); OS/2: 1.x - 4.x (Warp); Apple: MacOS(7.x, 8.x, OS X) EDUCATION Manhattan College Riverdale, NY B.S., Physics 1984 CERTIFICATIONS Novell, Incorporated - Certified NetWare Engineer CyberGuard, Incorporated - Certified Firewall Engineer Symantec - Raptor Certified Firewall Engineer RSA Security - SecurID Certified Engineer EMPLOYMENT HISTORY Syn-Secure Huntington Beach, CA Security Architect and Engineer 5/2001 - Present * Working as an independent consultant I have designed and implemented security systems and networks for beach area retail stores and restaurants. I have designed and implemented SOHO networks and network security for small and home based businesses. * Provided interim and on-call services to TekSystems for network security issues, and network troubleshooting. * Wrote the security architecture paper entitled "The Total Security Process Model" which outlines what the security issues are in today's environment, how to classify them, and then how to design and implement a system which will enable the customer/end-user to have a high degree of security in their environment. TekSystems Baltimore, MD Principal Information Security Architect to 9/99 - 5/2001 Intrusion.com (formerly ODS Networks) * Designed, developed and built a $6M security product integration and test lab including installation and configuration of security products from Checkpoint, Cisco, Intrusion, ISS, RSA, Sun, and Symantec. Configured routers and switches to enable complex WAN/LAN test scenarios including large-scale distributed denial of service (DDoS) attack testing. Developed policies and procedures for laboratory use. * Responsible for functional and design requirements analysis for all existing and new security products including the Cisco firewall and intrusion detection agents. * Categorized the incident responses and developed the test procedures to verify the Cisco agent code. Cox Cable * Designed the information security system including firewall rules (PIX), IDS deployment (Real Secure), virus protection (Symantec) regular security scans (ISS) secure remote access for telecommuters (Ravelin), key MIS personnel and executive staff (Ravelin and RSA SecurID) and web profiling (Websense, Webtrends) at the San Diego Call Center for 1500 users. * Designed the hot standby, load-sharing and fail over architecture for the Cisco switches (6509) and routers (7200vxr) implemented along with the security system as part of the call center upgrade. Designed the system to be scalable for a 100% increase in telecommuters over the next two years with the use of IP phones, secure VPN access and broadband Docis compliant cable modems at a projected cost savings of $250,000/year above and beyond cost of infrastructure and implementation expense. * Wrote the company's email, file-transfer and Internet security policies. CyberGuard, Inc. Managed the internal security and training group for internationally renowned firewall company used by global banks and insurance corporations and the U.S. Department of Defense. * Designed and built a state of the art security training facility and developed the curriculum for CyberGuard and security partner products aimed at providing comprehensive instruction and review for the Certified Information Systems Security Professional (CISSP) examination which resulted in doubling projected yearly revenue. * Designed, tested and deployed the CyberGuard security network expositions for ASIS Healthcare and Networld+Interop trade shows. Conneq, Inc. Managed a staff of 15 engineers who provided security and networking services to Conneq customers. * Performed security audits, penetration testing and firewall and IDS installations. * Authored internal and customer security policies and procedures and spearheaded partnerships with CyberGuard and RSA Security to implement the "Total Security Process Model" which I developed, for customers. MicroAge, Inc. Tempe, AZ Systems Analyst 1/99 - 8/99 Contracted to Fluor Daniel in Irvine, CA to develop and implement a security strategy to install LANDesk securely on 15,000+ remote systems worldwide. The project involved scanning all systems with ISS and then fixing all existing security holes as part of the project. * Developed a test lab and associated procedures to simulate the real-world Cisco based WAN topology to effectively test the functionality of the proposed procedures. * Analyzed WAN traffic flow including the impact of internal firewalls on traffic shaping and the remote control and inventory management of all affected systems. Enterprise Security Consultant 2/98-1/99 Designed and implemented Internet security for small and medium-sized businesses and schools. * Performed pre and post installation security assessments for customers, developed information security policies, performed firewall installations, analyzed networks, and participated in network and security designs. Pacific Blue Micro Newport Beach, CA Manager of Security Services 1/97-2/98 Created PBM's Security Services Group by recruiting engineering staff and providing training. * Responsible for security design and implementation of IBANK.com and the Fidelity Federal Bank secure on-line banking transaction system. * Project manager for Fidelity Federal Bank NetWare 4.11 rollout and the Insight Health Services switched WAN/LAN NT domain. Responsible for the secure WAN designs for both projects. XLConnect, Inc. (now Xerox Connect) Irvine, CA Director of Security 7/96-1/97 Managed a staff of 75 security engineers in the Southern California office primarily at Hughes, Nissan, and Rohr Industries. * Provided security design services for all projects and trained internal staff on security issues, firewall design and implementation. Performed security assessments, and wrote business continuity plans for customers. Authored security policies and procedures for the corporation and customers as well as template Statements of Work for security projects. Senior Systems Engineer 11/95-7/96 Project Manager for the Nissan North America NetWare project. * Converted the existing networks (Lan Manager, Banyan Vines, Peer-to-Peer (Lantastic) and upgrades (NetWare 2.x, 3.x) to NetWare 4.1 including the NDS design. Integrated the NDS with its' European and Asian counterparts. Designed the worldwide IP addressing schema and re-engineered the North American WAN and its' international connections. Wave Technologies, Inc. Reston, VA Corporate Security Officer 6/94-11/95 Designed and implemented Wave's Internet connection strategy, WAN and firewall; developed security procedures for corporate and training facilities. * Authored course materials for Connecting Your Business to the Internet, Internet TCP/IP Fundamentals and Principles of Internet Security. * Mentored senior instructors on security architecture and principles. * Lectured and delivered courses internationally on security issues and IP networking. Senior Instructor 7/93-11/95 Delivered courses internationally on network security, TCP/IP, LAN/WAN design and analysis, protocol analysis, network management and data communications to Wave's corporate customers. * Authored courses for the NetWare operating system on TCP/IP and Macintosh connectivity and proprietary training materials for Citicorp on data communications, NetWare administration and installation for the 4.1 operating system. * Consulted with Citicorp on their worldwide NDS design, network addressing schema and standards and implementation for 75,000 desktop and 3000 NetWare/NT/Unix servers. Networks Unlimited Virginia Beach, VA and Reston, VA Owner 11/92-8/95 Security consultant, network design and administration for small firms performing services on an as needed basis. PUBLICATIONS For CyberGuard: 2000 Firewall Pre-installation Survey Manual. 2000 Deploying and Integrating Network Intrusion Detection Systems with the CyberGuard Firewall. For Pacific Blue Micro: 1997 Network Installation and Documentation Manual. 1997 Network Site Survey Guide. For Wave Technologies: 1995 Connecting Your Business to the Internet. 1995 Internet TCP/IP Fundamentals. 1995 Principles of Internet Security. 1994 NetWare TCP/IP. 1994 NetWare for the Macintosh. For Citicorp: 1994 Citicorp Data Communications Standards. 1994 Citicorp NetWare 4.1 Installation Procedures. 1994 Citicorp NetWare 4.1 Basic Administration. 1994 Citicorp NetWare 4.1 Advanced Administration. ===== "What we do in life echoes through eternity" - Marcus Auerilius __________________________________________________ Do you Yahoo!? Y! Web Hosting - Let the expert host your web site http://webhosting.yahoo.com/
