•Qualified blackhat/whitehat practitioner with deep knowledge of ISO 27001, PCI, FISMA and HIPPA
•Extensive work in the Penetration Testing Execution Standard (PTES)
•Extensive experience in Agile-Scrum method and leadership in matrix-cross-functional teams; working on customer requirements, planning, risk management, project issue resolution and corrective plans of action.
•Accomplished IT junior executive known for willingness to take on difficult challenges
•10 years of progressive promotion in technical roles with increasing responsibility and professional involvement
•Business Process Software Testing of Sanity, Smoke, U/I Design, Load/ Crash Tests, User Experience Optimization
•Comprehensive experience in business accounts management and technical implementation of business objects code
•Provided Technical Solutions for Fortune 500 partners interested in meeting KPI standards established for corporate social responsibility and responsible lending practices in emerging technologies.
IT Direction and Initiatives: Secured annual grants in excess of one quarter million in technology funds to formulate an enterprise resource planning cooperative program among Washington DC area universities and private investment consortiums (Tekarta).
Capacity Planning: Assembled and chaired an Enterprise IT governance program that decreased development cost by 15% and eliminated redundant capabilities in just one quarter.
Operating Systems:Both Debian and non-Debian Linux forks, Solaris, Windows 2003, 2008, 2012 Server
Development:Flex, Netbeans,Visual Studio, Eclipse, Drupal/Wordpress CMS, PHP,HTML,Javacript, MySQL/Apache and hadoop
APIs/Arch: AIX, 2U, Amazon EC2 and S3, Facebook, twitter, Google analytics, eCommerce, Rest, and oAuth
Databases:Oracle, SQL Server, Postgres, Mysql, Hadoop, Crystal Reports, and Tivoli
Applications:Websphere, Xen, Virtualbox, VMware, Jboss, Suite, Windows Cmd Console Matlab, AutoCad, Sketchup, Solidworks, SPSS, SAS, MS Office, and Adobe Suite
Security Consultant @ From November 2015 to Present (2 months) Security Consultant @ •Penetration Testing Analysis using OWASP best practices
•Analysis and reporting using BURP, Netsparker, Acunetix
•Report composition and recommendations based on understanding of OWASP, CLASP, ISO 27002 and Microsoft’s Threats and Countermeasures Guide
•NOC security support
•Security Infrastructure Installation including certificates and cryptography
•Android Vulnerability scanning and patching of vulnerable code
•Wireless Security Auditing and breach remediation
•Safely test and remediate vulnerable network assets without interrupting asset uptime
•Social Engineering Vulnerability Assessor using SHODAN et al
•Qualified blackhat/whitehat practitioner with deep knowledge of ISO 27001, PCI, FISMA and HIPPA
•Penetration testing of servers, MetaSploit of applications, Nmap, Certificate spoofing, WPA/WEP cracking, DNS injection, Burp, Fiddler, Mantra, TamperData,
•Passionate Agile Scrum Practitioner with an open mind to innovation and best practices From December 2014 to October 2015 (11 months) Volunteer Developer and GitHub Contributor @ •Developer of verification methodology of cryptographic authenticity in the block-chain and penetration injection testing.
•Analyzed the Ethereum whitepaper and disseminated its content into easy to grasp business language.
•Contributor to forum updates
•Hardware cryptocurrency expert. From April 2014 to June 2015 (1 year 3 months) Toronto, Canada AreaCreative Director @ • Exposure to crypto-currency AppSec and Development with Go and Ruby
• Project Management and Scrum Master of large mostly outsourced programming Ruby teams
• Developed metrics reporting system for software testers to analyze market conditions over time. From January 2013 to January 2015 (2 years 1 month) Columbus, Ohio AreaResearch Assistant @ Promoted from Research Assistant to Test Director 2013
•Collaborated with prospective clients. Pitched investors and touted Tipping Point’s value added performance over other vendors. Won support by promoting benefits such as value-added services and major savings in energy collection.
•Test Director, QuickTest Pro, Loadrunner, and PVCS Tracker utilized for script automation, performance and defect tracking in windows/JAVA/ Ruby environment.
•Conducted multiple cycles of Regression Testing using the automated script.
•Masterful Excel spreadsheet translation into internal queryable database
•Prototyped solar energy research into computer simulations using javascript libraries, and Matlab-R
•Project management and programming assistance to outsourced programming teams using Agile methods From November 2012 to December 2013 (1 year 2 months) Senior Business Technologist @ Promoted from DBA to Senior Business Technologist 2010
Promoted from to Technical Lead to DBA 2009
Promoted from Junior Analyst to Technical Lead 2008
•Worked closely with Customer Management Executives, Project Managers, Communications Engineers, and Customers in designing and implementing new business requirements and application migration projects.
•OWASP security testing for PCI and HIPPA requirements
•Technical Lead on RSA and AES encryption standards implementations. Lead penetration verification tester.
•AppSec lead in a team that was unfamiliar with AppSec requirements
•QA engineering test scripts in Ruby and developed them using Ruby Mine.
•Developed automated Test Scripts for functionality testing using Quick Test Professional.
•Extensive Python implementation engineering
•Worked extensively with LAMP stack
•Installed and configured SQL databases over IP with firm understanding of traffic routing.
•Worked closely with Customer Management Executives, Project Managers, Communications Engineers, and Customers in designing and implementing new business requirements and application migration projects. From May 2007 to October 2012 (5 years 6 months) Greater Seattle AreaResearcher @ Biological Hydrogen synthesis research investigating the computational chemical dynamics of hydrogen production in algae. From January 2008 to December 2008 (1 year)
MS, Biotechnology @ Georgetown University From 2007 to 2008 Graduate Certificate, Healthcare Informatics @ Kent State University From 2013 to 2013 Bachelor's degree, MicroBiology, Political Science @ Millikin University From 2002 to 2005 High School, general diploma @ Hargrave Military Academy From 1998 to 2002 Andrew Gillette is skilled in: Public Key Cryptography, Cryptography, Requirements Analysis, Agile Methodologies, Android Development, HTML 5, Ruby, JavaScript, Angel Investing, Research, Systems Engineering, Parallel Computing, Distributed Algorithms, Search Engine Ranking, Microsoft Excel
Websites:
http://www.andrewgillette.com