Jason Michael Maddux
1600 E Coronado Dr
Tempe, AZ 85282
(208) 649-4830
<info@picturewell.com>
Network and Systems Security Engineering · Compliance and Auditing · Network and Systems Administration
Executive Summary
Experienced – Fifteen years of professional Information
Technology work experience.
Educated – Bachelor of Science in Computer Science from a
respected institution.
Skilled – Proficiency in a wide range of technologies, methods,
and products.
Knowledgeable – Formal training with a commitment to
continuing education in a rapidly evolving industry.
Adaptable – Ability to work in varied and diverse
environments; on autonomous projects or within structured
teams.
Resourceful – Problem solving ability coupled with a focus on
superior customer service.
Certified – Certified Information Systems Security Professional
(CISSP).
Cleared – Department of Defense, Secret level clearance
holder. (Inactive as of September 2011)
Education, Certifications, and Professional Associations
University of Arizona - Tucson, Arizona (2005 - 2008)
Bachelor of Science in Computer Science
3.34 cumulative GPA, College of Science Dean’s List, Fall 2007
Pima Community College - Tucson, Arizona (2004 - 2006)
AGEC-B Certification in Business Administration
24 credit hours of Applied Systems Administration courses
International Information Systems Security Certification Consortium (ISC)2 - (2010)
Certified Information Systems Security Professional (CISSP)
Professional Associations
Member, Association for Computing Machinery (ACM)
Member, Information Systems Security Association (ISSA)
Professional Work Experience
Information Systems Security Engineer – BodyBuilding.com; Meridian, Idaho (2011 - 2012)
Information Systems Security Engineer for eCommerce and community-driven website, with roughly $70M in online annual sales.
Charged with protecting customers sensitive data from hackers at large; leveraged expert knowledge of HTTP to identify OWASP
Top-10 and other web-vector risks in order to mitigate attacks before they occurred and in real time.
Played pivotal role in implementing PCI Data Security Standards (DSS) with Level 2 Merchant requirements.
Implemented and managed security appliances such as Imperva Web Application Firewall (WAF) and ArcSight SIEM, designed to
track and alert on potential security issues within the average 40M HTTP requests per day.
Worked side-by-side with site operations, corporate systems, and management to research, recommend, implement, and eventually
manage complex security solutions.
Technologies used on a daily basis: ArcSight Logger / ESM, Imperva Web Application Firewall (WAF), Zabbix, Rapid 7 / Nexpose,
Metasploit, Backtrack, McAfee (ASV), HP TippingPoint IPS, nmap, tcpdump, etc.
Information Security Engineer – Cherokee Technologies Inc / Department of the Army; Sierra Vista, Arizona (2009 - 2011)
Information Assurance Security Engineer for Installation Information Infrastructure Modernization Project (I3MP), U.S. Army.
Conduct IA security assessments and certifications for site / type accreditations per Department of Defense and Department of the
Army IA directives for various systems housed at Army installations across the globe.
Provide engineering support and security expertise toward configuring networking equipment, servers, and other devices in a secure
and approved manner.
Perform duties such as system and network scans, penetration testing, document and procedure review, on-site physical security
inspections, operating system and network device configuration analysis, etc.
Analyze information gathered from artifacts / site visits into standard Department of Defense format (DIACAP) for presentation to
customer (Department of the Army and Department of Defense, Defense Information Systems Agency).
Page 1 of 2
rev. 02JAN2013
Network Engineer III – Ciber Inc / American Express; Phoenix, Arizona (2008 - 2009)
Tier III Network Engineer on Network Operations Center team responsible for globally-distributed corporate network.
Responsible for IP space management and allocation, DNS and DHCP management for entire network containing over 100,000
nodes on six continents.
Responded to ticket escalations, monitored network health, assisted in design and deployment of solutions, administered mixed
environment servers and appliances.
Network traffic and application profiling, packet capture and analysis; security and availability analysis, tactical packet capture,
strategic traffic analysis for resource management and capacity planning.
Technologies used include but are not limited to Lucent VitalQIP, BIND DNS, ISC DHCP, Red Hat Enterprise Linux 3 / 4.7, Microsoft
Windows Server 2000/2003 Enterprise / Datacenter editions, InfoBlox NIOS DNS appliances, F5 Big-IP LTM and GTM, VIPRION,
iRules, Windows 2000/2003 Active Directory, Network General Infinistream / SEA, NetScout Performance Manager, Network
Instruments GigaStore, VMWare ESX / ESXi, SNMP, Dell Poweredge R600 and R700 series servers, HobbitMon, N3K RunIP,
Windows Update Services, Windows SMS 2003, PowerShell, cygwin, Cisco 3500 / 6500 Series switches, Cisco CLI, CatOS, tcpdump,
Wireshark, iSCSI SAN, etc.
Network Administrator II – Apta Software Inc / Harris Computer Inc; Tucson, Arizona (2003 - 2007)
Lead Network Administrator and Engineer for online service provider responsible for 24/7/365 delivery of online financial accounting
product with approximately 3,000 nationwide users.
Designed, implemented and managed networks for delivery of online software products and solutions with security and high
availability requirements within in-house and co-located environments
Interfaced directly with customer to resolve second tier issues; troubleshooting of complex networking and connectivity issues, Active
Directory and domain account issues and software performance issues.
Performed regular security audits and penetration testing; designed and implemented monitoring and auditing systems.
Systems Administrator – TRW Inc / Northrop Grumman; Sierra Vista, Arizona (1999 - 2002)
Managed IT department for corporate regional office with 2 employees and 280 workstations at 3 sites.
Summary of Technical Proficiencies
Systems
Red Hat Enterprise Linux, Debian Linux, Fedora, Ubuntu, CentOS, Mint
Microsoft Windows Server 2003, Server 2008, Windows Vista, Windows 7
Apple Macintosh OS X
Networking
Ethernet, TCP/IP, 802.11, PPTP, IPSec, IPv6
DHCP, DNS, SSH, SFTP, SNMP, HTTP, SMTP, SMB, VoIP / SIP, SSL
Cisco IOS, routing and switching, JunOS, F5 iRules, ACL's, load balancing
IPtables, Cisco PIX, HTTP proxy, Wireshark, IPCop, Nessus, Nmap, tcpdump, Netscout Performance Manager, Sonicwall
Servers, Services, and Appliances
Microsoft Active Directory and Group Policy, SQL Server 2000/2005, IIS, Terminal Services, Citrix, Microsoft MOM / SCOM, Microsoft
Exchange Server, Microsoft Sharepoint
ArcSight Logger / ESM / SmartConnectors, Imperva SecureSphere / WAF, HP TippingPoint IPS, Palo Alto NGFW
VMWare ESXi / Infrastructure Server / Workstation, Microsoft Hyper-V, Xen, Citrix
MySQL, PostgreSQL, syslog, OpenSSH, Apache, Postfix, Samba, BIND, X.org, VNC, IMAP / POP, rsync
McAfee AV / HBSS / ePO, Vertias BackupExec, SolarWinds, HP OpenView, Nagios, Symantec AV, Ghost, MRTG, Zabbix
Languages and Scripting
C, Java, C#, C++
PHP, Ruby, Perl, python, VB, javascript, DHTML
Shell scripting (bash)
JUnit testing, gdb, Eclipse IDE, CVS / SVN / git, SourceSafe
Telecommunications
Toshiba Strata PBX, Telrad PBX, Nortel / Avaya BCM
Cable plant and termination, SM/MM fiber
ISDN, DSL, T1, POTS
Security Standards and Best Practices
HIPAA, PCI DSS, DoD DIACAP, NERC SIP
OWASP, NIST SP 800-100
References
Professional references are available upon request.
Page 2 of 2
rev. 02JAN2013