Bryce R. Porter, CISSP, CCSE

CISSP, CCSE

Thank you for visiting my professional information page. Below you will find a current copy of my resume, a somewhat detailed account of my background in Information Technology, and several links to organizations that I associate with professionally. If you have questions or comments, please feel free to contact me at bryce@bryceman.com

Resume | Background Information | Links

Resume -- (Click here for MS-Word document format)

Career Objective	To affect positive change in the fields of Information Technology and Information Security while working to create new and better ways of implementing and managing technology.
Experience	May 2006 to Present Wachovia Corporation (intially contracting through TEKsystems) Winston-Salem, NC Sr. Network Security Deployment Engineer Design and implement highly-available application-layer firewall solution using Secure Computing Sidewinder firewalls in production data processing environments. Install and replace Checkpoint firewalls in production environments. Design and document seamless upgrade path to ensure minimal downtime and business impact during deployments. Coordinate with business units and stakeholders to create comprehensive implementation, testing, verification, and backout plans. Construct comprehensive process documentation to ensure project continuity. Perform project management duties, including task management, resource allocation, budgeting, and scheduling.
	October 2004 - April 2006 National Center for the Study of Counter-Terrorism and Cyber-Crime at Norwich University (NOTE: Name has since changed to Norwich University Applied Research Institutes) Northfield, VT Information Security Subject Matter Expert Provide subject matter expertise in the areas of Information Security, Information Warfare, and Information Operations to Vermont Air National Guard Information Operations (VTANG IO) Install, maintain, and operate multi-site network attacker/defender laboratory/simulation environment based on standard Air Force network systems. Create online Advanced Distributed Learning (ADL) courses for Network Defense (NetD), Network Warfare Operations (NW Ops), and Network Operations (NetOps) for the US Air Force. Develop experiential learning techniques for hands-on ADL-delivered training, simulations, and military exercises. Facilitate course delivery and provide supplemental instruction in the areas of NetD, NetOps, and NW Ops. Implement and enhance Learning Management Systems using customized open-source software tools. Provide subject matter expertise for Continuity of Operations planning and development. Provide ancillary mission support for simulation range and learning management systems.
	March 2003 - September 2004 VeriSign, Inc. Dulles, VA Senior Security Engineer Provide information security protection for critical DNS infrastructure of the Internet, including for A and J Root servers, SRS system, and global constellation of gTLD DNS servers serving the .COM, .NET, and .ORG domains. Provide information security for Internet critical infrastructure systems, including the .COM and .NET registries, VeriSign PKI root certificate systems, SS7 backbone systems, and other critical revenue-generating systems. Architect, install, manage, and maintain load-balanced Checkpoint firewall and NetScreen VPN systems in Cisco routed and switched environments for multiple production, corporate, and QA/development environments. PKI Administration, including management and backend technical support for Managed-PKI service line. Incident response, forensic investigation, vulnerability assessment, penetration testing, risk assessment, and auditing assessments. Comprehensive network security engineering for purpose-built production environments, including Site Finder, RoamerView, J-Root Anycast, Managed DNS, and others. Application security engineering, including application security reviews for custom applications during development, QA, deployment, and management portions of the application life cycle. Install, manage, and maintain highly-available firewall, VPN, and IDS systems for globally disparate corporate and production processing environments. Network engineering, system administration, application development, scripting, process management, and peer group management.
	March 2001 - March 2003 Network Solutions, Inc. Herndon, VA Senior Security Engineer Managed and administered firewalls, intrusion detection systems, authentication systems, and host-based security for industry-leading domain name registrar production environment. Security engineering design and implementation of a multi-tiered, highly available security architecture for entirely new production data center, resulting in zero lost-revenue security or operational incidents from implementation to present. Designed, implemented, and managed distributed intrusion detection system for production environment, providing intrusion data to support numerous successful internal and external investigations. Provided 24x7 support for production security systems, including incident response, performance tuning, troubleshooting, and problem resolution. Instituted strong encryption, authentication, and access control systems for management of production environment in efforts to eliminate all cleartext logins. Functioned as primary administrator of Public Key Infrastructure for certificate-based authentication of VPN systems. Lead engineer for network security architecture, design, and integration projects, including $12 million data center migration, HA firewall implementation, VPN integration, and numerous acquisitions. Developed and instituted policies and procedures for security incident response team, including development of Chain of Custody documentation and Security incident lifecycle processes. Performed security engineering assistance and application-level security reviews of custom web-based applications during development, QA, deployment, and management portions of the application life cycle. Designed, implemented, and managed multi-tiered logging system to support network and security device infrastructure, which became vital to day-to-day network and security support, management, and troubleshooting efforts. Designed, installed, and managed a production out-of-band console access solution for production servers, network equipment, and security equipment that utilized encryption and strong authentication controls. Developed and implemented custom host-based security measures, including lockdown/hardening scripts, routine assessment scripts, and access-denial alert scripts. Developed and implemented periodic external and internal penetration testing exercises, including test plan development, tool development, vulnerability analysis guidelines, and reporting procedures. Performed forensic investigations of numerous systems, including an exploited public FTP server, several rooted Linux systems, and a instance internal data theft by a contractor. Performed several security awareness briefings, including IDS brown bag lunch, Incident Response Team training, and a VPN vendor-interoperability technical briefing. Performed routine investigation and research of publicly-announced security vulnerabilities, viruses, trojans, and other security-related announcements. Assisted System Administrators with development of standard secure OS configurations for Solaris, Linux, AIX, and Windows systems.
	March 2000 - February 2001 Para-Protect, Inc. Centreville, VA Senior Network Security Engineer Functioned as lead security engineer on customer engagements, performing comprehensive networking and security consulting services for Fortune-500 customers. Performed network and security architecture design, engineering, implementation, assessment, and testing for customers. Performed security assessments of customer network infrastructures, including firewalls, routers, IDS, VPN, and physical security systems. Designated as lead engineer for design and implementation of revenue-generating managed security and monitoring system for customer firewall and IDS systems. Conducted internal and external penetration testing, web application testing, OS security testing, and social engineering tests on customer engagements. Performed router, switch, firewall, VPN, and IDS product evaluation, research, and testing in highly interoperable, vendor-agnostic testing lab. Performed pre-sales engineering and customer relationship development, including trade show interactions, executive briefings, and engineering assistance. Performed project management duties for extended-length engagements, including direct interaction and coordination with customers, billable time accounting for engineering teams, coordination of engineering efforts between teams, and on-going project documentation. Developed custom cross-training program for engineers and project managers, including cross-disciplinary skill development and peer review processes. Delivered security assessment and engineering reports and presentations to customer executives and operational personnel. Coordinated follow-on engineering and assistance efforts for customers, including technical assistance, engineering assistance, and on-demand call support. Performed research and development of security tools, vulnerabilities, and exploits, including participating in building an industry-leading security vulnerability database for use in custom report generation.
	November 1996 - March 2000 Raytheon Kwajalein, Marshall Islands Sr. Network Engineer, Network Security Manager Performed enterprise-wide management of a 1200+ node WAN employing multiple WAN, LAN, and security technologies, including Frame Relay, T1, ISDN, dial-up, and VPN connectivity to multiple international sites. Functioned as lead engineer on several infrastructure improvement projects, including campus-area network installation for local school system, metropolitan-area network installation for local retail stores, and backbone performance improvements that increased LAN speeds from 10Mbps to 100Mbps. Functional role of Network Security Manager operating under DoD-appointed Network Security Officer. Functioned as lead engineer for ground-based communications for command, control, and communications for solar-oribiting satellite systems. Performed implementation and management of a secure ISP-style Internet access system supporting a community of over 3000 people. Installed, maintained, and managed firewalls, routers, switches, and bandwidth allocation devices in multiple diverse military and commercial environments. Performed design, installation, management, and support duties for multiple secure network operating systems including Novell NetWare, Windows NT, Sun Solaris, and DEC Unix. Responsible for LAN equipment configuration, installation, management, monitoring, and security. Performed design, installation, management, and support duties for multiple departmental and enterprise-wide email systems, including upgrades and platform migrations. Performed continual network security risk assessment duties, including periodic review of external and internal networks and monitoring of vulnerability and exploit announcements. Performed documentation, accreditation, and training duties as required by AR-380 and AR-25IA.
	August 1995 - November 1996 Raytheon Portsmouth, RI Senior Field Engineer Performed design, configuration, installation, and project management of small and medium scale enterprise networks (up to 1000 nodes) for customers, including servers, clients, application software, cabling systems, network equipment, security equipment, and wide area communications. Designed and installed a secure multi-point ISDN WAN for a municipal secure data communications project, connecting municipal offices with police and fire departments. Project management, design, and installation of several medium-scale networks at public and private schools, including the infrastructure and server systems for North Providence High School (RI) and a fiber-optic campus-area network at Avon Old Farms private school in Avon, CT. Performed project management duties for installation teams, sub-contractors, and support personnel. Developed and delivered custom training programs for system administrators. Performed pre-sales engineering and sales support for network consulting business. Performed network and security engineering duties for consulting customers.
	March 1995 - August 1995 DXM Computers, Inc. East Providence, RI Systems Engineer Performed comprehensive network systems design and consulting duties for the installation of customer networks. Performed logistical planning, consultation, and coordination for installation network systems for customers. Performed LAN & WAN installations, including cabling, network equipment, servers, workstations, and application software. Performed network security design, implementation, and management, including custom policy creation and implementation of automated enforcement measures. Performed over 100 server installations for customers. Performed customized training of support personnel, including follow-on call support and daily operations support. Evaluated new products and emerging technologies for business development group, and provided ongoing engineering support to business executives regarding new products and opportunities. Performed all duties related to government sales and municipal contract bidding for fledgling government sales business, including RFQ/RFP completion and representation at bid openings/signings. Provided engineering assistance and strategic planning in conjunction with retail sales team.
	February 1993 - March 1995 Image Solutions, Inc. North Providence, RI Senior Technician Performed design and installation duties for small network infrastructure customers, including servers, workstations, cabling infrastructure, and network equipment. Performed installation and support of secure networks for small to medium size customers, including lending institutions, real estate offices, retail stores, and manufacturing firms. Provided pre- and post-sales support for network installation customers, including functional role as primary customer contact for technical issues. Performed customer network infrastructure design and architecture review duties. Designated lead hardware technician for custom Intel-based server design, assembly, and installation. Performed pre-sales technical support for customer engagements. Conducted technical employee training and mentoring. Created and implemented multi-tiered escalation process for PC/network support team.
Education & Certification	Certified Information Systems Security Professional (CISSP) Check Point Certified Security Expert (CCSE) Certified DoD Information Systems Security Officer (ISSO) Certified Novell Administrator (CNA) RSA Certified Systems Engineer ISS Certified Product Specialist for RealSecure, System Scanner, and Internet Scanner Graduate, Air Combat Command Classroom Instructor Course Graduate, Air Combat Command Instructional Systems Design Course Hubbell Premise Wiring Certified Installer for CAT 5 Cabling Systems Previously held licenses in Rhode Island and Massachusetts as a Telecommunications Systems Contractor Formerly held DoD Secret Security Clearance (DISCO, 2003) Secondary education from University of Maine, Community College of Rhode Island, and Norwich University Brainbench Certifications:
Technical Competencies	SECURITY TECHNOLOGIES: Extensive experience with Check Point Firewall-1/VPN-1, NetScreen products, Secure Computing Sidewinder Firewall, RSA Security SecureID authentication products (primarily ACE Server), Cylink encryptors, and Internet Security Systems (ISS) intrusion detection and security scanning products; Expert knowledge of IPSEC VPNs, including encryption and authentication standards and technologies; Moderate experience with Cisco Secure PIX and ACS products; Extensive experience with VeriSign Public Key Infrastructure (PKI) and various encryption and digital signature software; Extensive experience with common security assessment and testing tools, including Nessus, Nmap, Strobe, PingSweep, John the Ripper, L0phtCrack, etc.; Extensive experience with ISS RealSecure, Entrerasys Dragon, and Snort intrusion detection systems (IDS). NETWORKING TECHNOLOGIES: Expert knowledge of TCP/IP and multi-protocol internetworking, including comprehensive understanding of network communications through all layers of the OSI model; Extensive experience with Cisco, Nortel (Bay Networks, Synoptics, Wellfleet), Nokia, HP, Xyplex, Lucent (Ascend), Shiva, DEC, Digital Link, and 3COM network equipment; Moderate experience with Foundry, Alteon, F5, and Cisco load balancers; Extensive experience with RIP, RIP2, IGRP, EIGRP, OSPF, and BGP routing protocols OPERATING SYSTEMS: Extensive experience with Linux, Solaris, AIX, Windows 95/98/NT/2000/XP, and Novell NetWare; Moderate experience with FreeBSD, OpenBSD, HP-UX Unix systems; Experience includes deprecated network systems, such as Artisoft LANtastic and Microsoft LAN Manager; Extensive experience with IBM, Sun, Dell, HP/Compaq, and ALR server systems; Significant experience with complex server architectures, including SMP and MPP systems, RAID arrays, and SAN systems. MANAGEMENT TECHNOLOGIES: Moderate experience with SNMP-based and client-based management tools, including Tivoli Enterprise, HP OpenView, BindView EMS, MRTG (including Cricket and the RRD Tool), Citrix MetaFrame, and Veritas software products. Moderate experience with vendor-specific product management tools such as CiscoWorks, Nokia Horizon Manager, and NetScreen Global Pro; Extensive experience with several different helpdesk, asset management, and call tracking software applications, including Heat, Remedy, and Infra. DESKTOP SYSTEMS: Extensive experience with Linux (Red Hat, Mandrake, Debian/GNU) including common X-Windows desktops, DOS, and Windows 3.x/95/98/ME/NT/2000/XP; Extensive experience with Gateway, Compaq, Dell, Sun, Micron, HP, and other popular desktop systems. SOFTWARE: Expert knowledge of Microsoft Office programs; Extensive experience with MS-Mail, MS-Exchange (including DMS), MS-Proxy, MS-IIS, GroupWise, and several directed-market software applications, including BASS Point-of-Sale systems; Moderate experience with MySQL and Postgres databases, and Oracle software. WIRELESS: Extensive experience with wireless products and protocols, including 802.11a/b/g standards, 802.1x authentication, and wireless/wireline network integrations.
Organizational Affiliations	International Information Systems Security Certification Consortium (ISC)2 Information Systems Security Association (ISSA) Association for Computing Machinery (ACM) Special Interest Group on Security, Audit and Control (SIGSAC) Computer Security Institute (CSI)

Background Information

I started my career in the computer industry in 1992 as an entry-level technician with a small computer consulting company called Image Solutions, Inc. in N. Providence, RI. It was at Image Solutions that I got my first taste of "cutting edge" computing. I was responsible for building, configuring, troubleshooting, and repairing the AT clones sold by the company to their customers. Once I had mastered the basic troubleshooting and repair skills, my duties were expanded to include creating custom configurations to match client specifications, new product development and testing, and network cabling. I learned how to install CAT-5 cable, and how to design a functional topology for the networks I was working on. Shortly thereafter, I was introduced to my first Network Operating System: Artisoft LANtastic. LANtastic proved to be a valuable tool for teaching myself about the inner workings of NETBIOS compatible networks due to its simple-language methods, adherence to NETBIOS standards, and interactive management interface. Before long, I was installing 25-node LANtastic networks with dedicated servers without assistance. From there, it was a natural progression to Novell Netware. I started with Netware 2.x, but had very little exposure to it. When Netware 3.11 was released, customer demand for networks was up and Image Solutions was selling and installing Novell networks like crazy. I was spending routinely 40-50 hours a week on-site installing and servicing networks, handling at least 25 clients on my own, and managing one other technician. With the advent of Netware 3.12, I was installing 3 or 4 networks a month, handling every aspect of network engineering, and loving every minute of it. I might have stayed with Image Solutions for quite some time, but my salary was not advancing as fast as my responsibilities, so I started looking for jobs elsewhere.

After a short stint as Network Manager for a jewelry company, I went to work for DXM Computer, Inc. DXM is a distributor and reseller of IBM-compatible computers and components in East Providence, RI. It was at DXM that I got my first taste of comprehensive project management. From providing sales support at customer meetings, to designing the networks, to installing the servers and workstations, I was fully immersed in the integration process, start to finish. I installed my first Windows NT systems and networks while working for DXM, starting with the very first version released, Windows NT version 3.1. I was much more impressed with Windows NT Advanced Server when it came out, and I spent a lot of time developing application and small-network servers on that platform. I also saw my first WAN installation while working for DXM, a 56k leased-line remote LAN. Being the only network engineer on staff made me the last line of defense when it came to network problems, a challenge that presented several unique and interesting situations. I learned very quickly how to get support from vendors and manufacturers without incurring additional cost to the customer or the company. Since my duties included building servers for the reseller distribution portion of the business, I was able to hone my server installation skills on the 100+ Netware and NT servers I built for the company during my employment. I was also responsible for representing the company at the many bid meetings that we attended for the municipal and state government contracts we pursued, which exposed me to many different kinds of people in the computing industry.

It was at one of those bid meetings that I was approached by a representative from Raytheon's Support Services Company (RSSC). He told me that Raytheon had started up a consulting business in Portsmouth, RI, and asked if I would like to interview for a position in the company. I interviewed for a Senior Field Engineer position, and was offered the job quickly. It was while working for Raytheon that I got my first taste of large-network management and installation. As you can see from my resume, I was exposed to many different aspects of large-network engineering. I did a lot of traveling while working for RSSC. Some of the highlights of my employment there included the project management of a completely new network of 200+ nodes at a local high school, installation and management of a 500+ node network at a private school in Avon, CT, and the design and installation of an ISDN WAN for a municipal town hall and its police and fire departments. I also traveled to other parts of Raytheon performing installation and network services.

One of the other Raytheon locations I visited eventually led to a transfer within the company to my second position with Raytheon as Senior Network Systems Engineer for Raytheon's Range Systems Engineering (RSE) company at the United States Army Kwajalein Atoll/Kwajalein Missile Range (USAKA/KMR) in the Marshall Islands. Working for RSE provided me with the opportunity to see many different kinds of computer systems that I otherwise might not have had the opportunity to see. I was also able to work on some exciting WAN technologies, including T1, Frame Relay, and several different kinds of ISDN, that I had not been exposed to previously. The design and implementation of an Internet Service Provider (ISP) style Internet access service for both community and business use was particularly exciting. As the mail system administrator at USAKA/KMR, I was able to design, install, and support multiple e-mail systems for several different departments, including the inter-connectivity between the Department of Defense (DoD) and contractor e-mail systems. I also received considerable exposure to several firewall technologies, and did considerable configuration work on several different network firewall products from Secure Computing. I performed a lot of work with the network security and routers on the several networks at USAKA/KMR, and attended to several training classes, including training on Microsoft and Cisco products, as well as security-specific training as part of the DoD's Information Assurance Program.

After spending nearly four years overseas, I decided to return to the US to pursue a position in the commercial sector. After a short search, I accepted a job with Para-Protect Services, Inc., an Internet and Operational Security company in the Washington DC area. While working for Para-Protect, I was able to greatly expand my Unix and security skills and knowledge, and had the unique opportunity to meet and work with some of the top minds in the emerging Information Security marketplace. I worked on several exciting projects while employed at Para-Protect, including several security assessments for Fortune 100 companies and active e-business companies. I was promoted to Senior Network Security Engineer in October, 2000, and led several project teams for assessments, security infrastructure implementations, and general security consulting efforts. I was officially commended twice for my efforts on customer assignments, and received several written letters of commendation from customers. Unfortunately, Para-Protect had some financial and business problems that prevented me from successfully continuing to work for the company, and I departed in February of 2001.

After leaving Para-Protect, I accepted a position with Network Solutions, Inc., at the time owned by VeriSign, Inc. From March, 2001 to February 2003, I worked as a Senior Security Engineer in the NSI's production operations department. I installed and managed the firewall, IDS, and VPN systems for production systems supporting the largest Internet domain name registrar, as well as performed a host of other duties, including security auditing, lockdowns, network architecture design, script/tool development, and system development and integration. Some highlights of my career at NSI include the introduction and implementation of the company's first high availability (HA) firewall solution, which was subsequently adopted by the company as a standard for firewall systems company-wide, the proliferation of digital certificate-based VPN systems including the customization and development of tools and procedures for implementation of user VPNs, the design, installation, and maintenance of a multi-tiered security architecture that protects production systems from an average of 10,000 attacks per day, and participation in the migration from several data center facilities in the Herndon, VA area to a new facility in Dulles, VA, which occurred without a significant outage or impact to NSI's customers.

In March of 2003, I moved to another position within VeriSign, as Senior Security Engineer for the Operations & Infrastructure division of VeriSign Global Registry Services (also known as VeriSign Naming and Directory Services). My duties at VeriSign included comprehensive security system design, installation, and management of the VGRS/VNDS production systems, including the .COM, .NET, .CC, .TV, and .NAME registries, as well as a lead engineering role in VeriSign Corporate Security. The group I worked for was functionally responsible for the security of two of the 13 root name servers on the internet (A-Root and J-Root), as well as the 16 globally-diverse sites in the GTLD name server constellation. The security group also managed the firewall, VPN, and IDS systems for all of VeriSign's global corporate infrastructure.

In October 2004, I moved to Vermont and accepted a position with National Center for the Study of CounterTerrorism and CyberCrime at Norwich University, providing subject matter expertise to the US Air Force and the Vermont Air National Guard (VTANG) in the area of network security, network defense, and network operations. The focus of my work was on creating collegiate-level courses that utilize hands-on experiential learning techniques to deliver remote interactive training for Air Force cyber-defenders. The courseware focused on the subjects of Network Operations, Network Defense, and Network Warfare Operations. While working in this very unique position, I had the opportunity to collaborate with some of the top minds in Air Force cyberspace defense, and worked closely with the Air Force Communications Agency and several other Air Force organizations to create simulator-based training programs for Air Force network defenders. I also provided subject matter expertise and instruction at global coordinated simulation training exercises and in online courses.

In May 2006 I moved to Winston Salem, North Carolina for a contract position in the Network Security Services arm of the Corporate Information Security department at Wachovia Corporation. In October, 2006 I accepted an offer of full time employment at Wachovia, and have since remained quite busy with various firewall deployment projects, including an enterprise-wide rollout of application-layer firewalls, as well as the deployment of firewalls into two newly-constructed data centers in the Southeast region. My tasks at Wachovia have been primarily related to the design and deployment of firewall solutions across Wachovia's immense network environment.

Links

The following links are for some of the companies that appear in my employment history.

	Wachovia Bank is the 3rd largest bank in the United States, and is in the top ten worldwide. I have worked in Corporate Information Security at Wachovia since May, 2006.
	Norwich University is the nation's only private military college, and one of the oldest colleges in the U.S. I work for the department of Information Technology, on contract to Vermont Air National Guard Information Operations (VTANG IO) for the purposes of developing Advanced Distributed Learning (ADL) courses for Network Defense.
	Vermont Information Operations is the organization that I am contracted to through Norwich University. VT IO is a Joint group of Vermont Army and Air National Guardsmen working to become the source of choice for Information Operations education.
	VeriSign, Inc. is the company that controls the DNS for most of the Internet, and is the worlds largest provider of SSL certificates. My position was with VeriSign Naming and Directory Services, also known as VeriSign Global Registry Services.
	Network Solutions, Inc. is the subsidiary of VeriSign, Inc. where I was employed for most of 2001-2002. They are also the largest registrar of Internet domain names in the world.
	Para-Protect is the information and operational security consulting company that employed me for most of 2000. They went out of business in 2001, due mostly to poor management practices and random shifts in primary business focus areas.
	Raytheon is the company that I worked for in Portsmouth, Rhode Island, and in the Marshall Islands. More specifically, I worked for Raytheon Range Systems Engineering during 3+ years at Kwajalein Missile Range, which has been re-designated Reagan Test Site shortly after I left.
	DXM Computer, Inc. is the computer and computer parts distributor and reseller that I worked for in Rhode Island.

The following links are for many of the companies and vendors whose products and services I have had experience with during the course of my career.
	Cisco Systems is the leading manufacturer of network equipment, as well as some of the industry's best security products. I have worked extensively with several Cisco products, including IOS routers, Catalyst switches, PIX firewalls, and the Cisco Secure ACS and IDS products.
	Check Point Software Technologies makes one of the most popular firewall and VPN products available. I have installed, configured, managed, and/or monitored literally dozens of Check Point firewalls during the course of my career,and I have earned the Check Point Certified Security Expert (CCSE) certification as one of my professional accomplishments.
	Internet Security Systems makes several security products, including RealSecure IDS and Internet Scanner. I've been to training on several of their products, and have been certified as an ISS Certified Specialist. ISS products are good, but somewhat entry-level if you ask me - they can't stand up to the extreme loads required by a high-traffic site (IMHO).
	Enterasys bought out Network Security Wizards, who created the original Dragon IDS system. Since then, the product has come a long way, and I've been installing, configuring, and using it the whole time. It's a good product, but it suffers from the same limitations as other signature-based IDS's: the inability to catch attacks it doesn't know about.
	Unlike many Unix geeks, I'm a big fan of Sun Microsystems servers and software. I've got quite a bit of experience with SunOS and Sun's Ultra and Enterprise line of servers, but haven't been using Sun stuff as much since the industry started moving towards Linux.
	Red Hat sells the most popular version of the free Unix operating system known as Linux. I've been using Red Hat Linux to for various systems and tasks over the past 4-5 years, and it has become my de facto standard for all of my Linux systems for both personal and professional use.
	My exposure to FreeBSD is mainly from the Nokia-modified version known as IPSO, but I have installed FreeBSD on desktop boxes before for one reason or another. It's a great OS, but the proliferation of Linux has forced it into somewhat of a specialty-only position.
	My interest in OpenBSD was sparked by the fact that it is used as the base OS of several security appliances and firewalls, and because it rarely suffers from the same vulnerabilities as other Unix OS's. Generally speaking, OpenBSD is the most secure Unix operating system "out of the box".
	Secure Computing makes the Sidewinder Firewall, an application level proxy firewall that is in use on several DoD networks that I have worked on. Unlike many of my colleagues, I am a big fan of the Sidewinder product, and I thoroughly enjoyed working on the several Sidewinders that I have been responsible for installing, configuring, and maintaining.
	Nortel makes network equipment. I've had a limited amount of experience with Nortel's products, but I have had an extensive amount of experience with the products of Bay Networks, a company that Nortel acquired. I also have some experience with their Contivity VPN switches and Alteon load balancers.
	In 2002 the original Shiva Corporation was purchased from Intel Corporation and was combined with Simple Access, a company featuring advanced firewall and security appliance products. It's been a while since I've worked with their products, but I used to install and maintain the LanRover product line pretty extensively.
	Lucent has purchased numerous different companies and products throughout the years, some of which I have worked with in the past. I have lots of experience with Ascend ISDN routers, including the MAX 2000's and Pipeline 75's and 85's. I've also used the Orinoco wireless products, which make use of Lucent chips.
	RSA Security makes a line of authentication and security products, namely the SecurID family of products, which I have installed, configured, and managed in the past. I have been to RSA's training on the SecurID products, and have been certified as a RSA Certified Systems Engineer.
	Packeteer makes a line of bandwidth management products that manage, monitor, and report on the bandwidth usage of an network link. In the past, I have been responsible for configuring and managing Packeteer PacketShaper 4000's.
	Cylink makes encryption and network security products, many of which are listed by the National Security Agency as being acceptable for DoD Classified and SBU networks, which is why I know about them. I have used Cylink CIDEC Hsi frame encryptors in the past.
	Since my TELECOM experience is somewhat limited, I have been exposed to just a few CSU/DSU products. Not that I am an expert in the field, but I think the CSU/DSU's made by Digital Link must be some of the best around. I know of several carriers and data centers that use them exclusively, and at least one DoD base that has several hundred of their products in one room! I have used Digital Link's DL100's, Prelude Solo's, and Prelude Encore's.

For personal information about me, please feel free to visit my personal home page, Bryceman.com