Information Security Services
Independent Information Security Consultant since 2003 for clients ranging from small start-ups to Global 500 companies. My main focus has been regulatory compliance and adoption of ISO 27000 series standards. Some example projects include:
- Established centralized information security policies publication management process and updated all policies to meet regulatory requirements for Fortune 500 Super-regional Bank.
- Re-design and implement ISP/ASP Microsoft / Cisco based architecture to enable PCI compliance. Included design for high availability architecture and automated failover.
- Independent information security assessment of code and services of an entrepreneurial startup providing on-line auction of financial instruments in support of court litigation attempting to block them from providing services to a state agency. The client prevailed in their case.
- HIPAA compliance consulting services to entrepreneurial startup providing healthcare related ASP services and code, including customer guidance in meeting regulatory requirements.
- Designed network, video surveillance and remote mare monitoring systems for horse breeding stable.
Standards and Regulations
Sarbanes-Oxley (SOX) 
Gramm-Leach-Bliley Act (GLBA) FFIEC HIPAA CA OPPA FISMA NIST 800 series VISA/MC PCI Amex DSS Multi-State Lottery CoBIT ISO 27000 servies (previously 17799) GASSP Common Criteria
Technologies
Ethical Hacking Tools
Tcpdump, ethereal, netcat, Nessus, nmap, xprobe2, firewalk, John the Ripper password cracker, l0phtcrack, Putty
Firewalls, Routers, IDS, Proxy, VPN, Antivirus
Cisco PIX, ASA, VPN Appliance, routers and switches CheckPoint Firewall-1 NG ISS RealSecure suite WatchGuard NetScreen Microsoft VPN, ISA Server McAfee ViruScan Suite
HRF is home to U.S. Horse Outreach. You can learn more about USHO at www.usho.org
I support my efforts at HRF through my computer security consulting work. I'm always looking for new clients. View my resume online.