Thomas Scott Gardner, CISSP
6550 S. Bogle Ave.
Chandler, Arizona 85249
Phone: 602-421-5568
tom_gardner@gartek.com http://www.gartek.com
Professional Summary
Seasoned Information Security professional proficient in architecture, engineering, and
management of large scale high-availability enterprise networks. Fifteen years of real-world
experience in roles as Information Security Architect, Engineer, and Security Analyst.
Experience in law enforcement cybercrime investigation, Incident response & forensics,
Perimeter security, Intrusion Detection/Prevention systems, and ethical hacking & penetration
testing. Thomas received his degree in Electronics Engineering from DeVry University, holds a
CISSP certification, is a certified IT instructor, and Unix systems consultant.
Employment History
Limelight Networks 2220 W 14th St, Tempe Arizona. Aug 2008 to Date
Sr. Information Security Architect / Engineer
Primary responsibilities are Information Security architecture, engineering, and management of
Limelight Network’s corporate and global Content Delivery Networks.
Developed and implemented Limelight’s Enterprise Security Program. Implemented enterprise
Information Security Management System (ISMS) based on ISO 27001 for Sarbanes-Oxley
controls, and PCI-DSS compliance initiatives. Performed compliance gap analysis, and
developed compliance strategy and roadmaps. Designed Business continuance and disaster
recovery solutions. Performed threat and vulnerability assessments, and physical & logical
security reviews.
Principle IS/IT and network architect, logical design engineer of Limelight’s enterprise network
infrastructures: Firewall and perimeter design, Internet services, and remote access VPN
services. Unix/Linux/Win systems engineering: Debian, FreeBSD, RHEL, Win2003/2008 and
Enterprise Directory (openLDAP) design and integration.
Management and design of enterprise security operations functions. Developed corporate
Incident and vulnerability management systems & procedures, Network Intrusion Detection
systems(Snort), Security Event Management systems(OSSIM) , and vulnerability scanning
(Nessus)systems. Infoblox IP & Asset management. Lead CISRT “red team” escalation
engineer. Performed computer security incident investigations, incident response & reporting,
digital forensics and penetration testing and ethical hacking.
Major Architectural Accomplishments:

Architected, designed, and managed enterprise “Trusted Network” IPV4/IPV6,
segmented corporate network, secure remote access (VPN) and Internet services.
Implemented Juniper ISG2000-IDP/IDS firewall cluster and Network Security &
Manager (NSM).

Architected, designed, and deployed global PCI-DSS compliant Content Delivery “SECNET” Network. Designed Payment Card Gateway DMZ/Enclave. Implemented PCIDSS policies, process and procedures to comply with PCI-DSS requirements.

Developed enterprise ISMS based on ISO27001 security standards. Integrated legacy
policies, Sarbanes Oxley, PCI-DSS requirements into single compliance framework.
Thomas S. Gardner Resume 2011
(Page two)
Wells Fargo 2600 South Price Rd. Chandler, Arizona 8/16/99 to 08/2008
Information Security Architect (Information Security Architecture Team)
Primary responsibilities were the architecture and design of continuous availability Internet
banking, financial processing systems, and corporate IT infrastructures. Primary focus was
secure file transmission systems, secure communications & extranets, perimeter security,
Internet banking services, and consulting. Major architectural accomplishments include:
 Developed and implemented Wells Fargo enterprise Internet Secure File Transmission
services. (Distributed data center architecture) Tumbleweed/Axway Secure Transport.
 Perimeter security: Firewall / DMZ engineering: Raptor, PIX, ASA, AltaVista firewalls
 Engineering and implementation of secure vendor remote access services.
 Co-architect of enterprise Wireless LAN 802.11i services.
 Primary architect of enterprise insecure protocol elimination initiative.
 Developed enterprise Internet banking perimeter security architecture standards.
 Security Event Management (SEM) log collection and reporting architecture (Splunk).
 Co-architect of ArcSight ESM enterprise event correlation and monitoring infrastructures.
 Developed perimeter extranet IBM z/OS “secure communications” architecture.
National Data Corporation. 2394 East Camelback, Phoenix, Arizona. 4/17/99 to 8/16/99
Network and Unix Systems Security Administrator (Open Systems Group)
Security administration and management of large Solaris, EMC storage and Informix database
server farm. Implemented centralized security event log collection and alerting system.
Deployed secure access nodes, and secure shell communications for all production servers.
Maricopa County Attorney’s Office. 301 West Jefferson, Phoenix Arizona. 11/17/96 to 4/17/99
Lead Telecommunications Analyst (Unix and Computer Security Administrator)
Responsibilities were Unix systems, network and security administration of 1000+ node law
enforcement network. Achievements included implementing a “Controlled Access Networks” to
isolate sensitive services from the county backbone network. Received commendations from
County Attorney (Rick Romley) for the development of custom Linux forensic tools used in
Internet crime investigations. Firewall administration on Checkpoint, Cisco PIX and
Portus/FWTK. Wrote tools in Unix shell, C, and Perl.
Semy Engineering. 2340 West Shangri La suite 201 Phoenix, Arizona. 2/15/94 to 11/12/96
Unix Systems and Network Administrator, (Site Administrator)
Unix Systems and network administrator for semiconductor process control Software
Engineering Company. Core responsibilities included LAN/WAN network management, security
and server administration on Solaris, HP-UX, AIX and Linux. Wrote installers, patch
management tools in Unix shell.
Education, Degrees, Certifications, Awards:






DeVry University Phoenix Arizona. Associate of Science Degree in Electronics
Engineering. ASEE. Presidents List. GPA 4.0/4.0 1981
Certified Information Systems Security Professional CISSP #79107
Hewlett Packard certified Unix consultant and Network Engineer.
Received over ten “Service Excellence” awards from Wells Fargo management teams.
Received multiple commendations from the Arizona Maricopa County Attorney (Rick
Romley) for tools and consulting Internet crime investigation.
Novell certified Unixware instructor (CNI).
Professional Training
















SANS SEC 560 Ethical Hacking and Penetration Testing Track 07/2010
SANS SEC 503 Advanced Intrusion Detection System Track 11/2009
SANS Security Conference (Securing Windows Track) (02/2008)
Burton Catalyst Conference (Security Architecture track) (06/2007), (06/2006)
Cisco Advanced PIX Firewall (FWSM) administration 03/2004
Cisco Secure Virtual Private Networks (CSVPN) 07/2003
Symantec Advanced Enterprise/Raptor Firewall Administration for Solaris 10/2001
Building Cisco Scalable Networks (BSCN) 11/2000
Intrusion Techniques and Countermeasures Computer Security Institute 06/2000
Interconnecting Cisco Network Devices Course (ICND) 12/1999
Cisco Network Academy CCNA CNT140, CNT150 2/1999
C Programming. Estrella Community College 6/1998
Informix On-line Dynamic Server System Administration 06/1997
Hewlett-Packard HP-UX Performance Tuning, and Operating System Security and LVM
and Mirror Disk/UX 10/1997
IBM AIX/RS6000 Advanced System Administration 07/1996
Sun Advanced Solaris Administration (SA-370) 07/1995