Jason Spence

jspence@lightconsulting.com
(650) 380-1430

If you have received this document on paper, you may want to look at the most up-to-date version of this document, located on the World Wide Web at http://lightconsulting.com/~thalakan/resume.html.

Goal

To use my abilities to help individuals and organizations to communicate without boundaries, without borders, and without fear of their communications security being compromised. To help and advise organizations on the communications security aspects of their decisions. It is my goal to provide secure, ubiquitous access to communications technology for all.

Objectives

To apply best principles to the deployment and management of networks, and assisting the system and network administrator communities to develop the zero-administration environment we all want.
To use my programming skills to leave the networks I touch smarter, faster, and more visible than when I started working with them.
To release one truly great network infrastructure software component to the Internet networking community.

Experience

2002-Present	Protectix, Inc.	Santa Clara, CA

Technical Consultant

Performed remote forensic analysis of compromised Windows servers and acted as liason between customers and Federal law enforcement.
Performed on-site policy re-engineering consulting with customers.

2001-Present	Open Source Telecom	Sunnyvale, CA

Technical Consultant

Re-engineered server shipping process, saving approximately 1 day of engineering time per server and significantly increasing average margin per server.
Wrote custom IVR systems using a combination of Perl and ccscript on the GNU Bayonne platform. Responsible for factoring out common code segments into re-usable libraries. Reduced average time to feature complete from weeks to days.
Wrote Caller ID and port bridging drivers for Bayonne's Voicetronix driver. Worked with Voicetronix to resolve several bugs, including hybrid balance codec issues.
Found, fixed, and reported bugs in Bayonne and its components during product development and created patches against the main Bayonne tree on subversions.gnu.org for approval by David Sugar, the GNU Bayonne maintainer.
Designed and implemented heterogenous IPSec VPN for secure partner and remote worker access.

1999-Present	Fry's Electronics, ISP Department	San Jose, CA

Technical Consultant

Designed and implemented all the hardware and network infrastructure that runs www.frys.com. Project came in 50% under budget and has been secure for 2+ years.
Implemented an 800-port RAS solution with three hardware vendors and open source software.
Responsible for installing and maintaining equipment and software to provide dial-up, mail, RADIUS, customer web hosting, and infrastructure services for ISP products.
Participated in the development of Freeside, an open-source billing and ISP administration package. Acted as developer liason between the Freeside community and Fry's management to produce patches which met the needs of both groups.

Education

2000-Present	Ohlone Community College	Fremont, CA

Attending courses in business management and supervision for personal investment purposes.

1999-2000	College of San Mateo	San Mateo, CA

Attended courses in real estate management for personal investment purposes.

Skills

Communications

I plan to be speaking throughout 2003 at infosec conferences on the following topics: CMOS password checksums, network visualization, compiler theory and its applications to reverse engineering, and firmware-based rootkits. Slides and abstracts are available upon request.

I regularly attended Toastmasters meetings in Foster City between 1996 and 1998.

Languages

ANSI/ISO C, C++, Java, Perl, UNIX shell scripting (Bourne and csh), Intel assembly (with a focus on buffer overflows and other assembly-level attacks), NT command shell scripting, VBScript / JScript windows scripting hosts.

Network Platforms

I can bring the following systems into compliance with site security policies: Windows NT (2000, XP), Linux, FreeBSD, OpenBSD, Solaris. I am familiar enough with the code to customize the following packages at the source level: ISC BIND, snort, Sendmail, Qmail, Apache, StrongHold, and OpenNMS.

Network Protocols / Hardware

I've worked with the following packet filtering, monitoring and/or firewalling tools: Linux 2.4 iptables SPF, Linux 2.2 ipchains, BSD ipfw, IPFilter, OpenBSD pf, libpcap, libnet, Ethereal, libnids.

I have worked with and/or written protocol libraries for the following platforms: Internet Protocol v4 and v6, Ethernet, Gigabit Ethernet, the H.323 family of videoconferencing protocols, BGP 4+, DNS, LDAP, SNMP, HTTP, FTP, IP Multicast, Berkeley UNIX sockets, Linux 2.4 bridging, AX.25 amateur packet, SMB (windows networking), NFS, NTP, the Intel PXE family of network boot tools, bpbatch, NMB (windows networking name services), PPTP, Token ring, various LAN ATM flavors, PPP.

Other

Can type over 100 wpm on both QWERTY and Dvorak keyboards.
I participated in the DefCon Capture the Flag competition during DefCon 9 and 10 and assisted the Digital Relevation team in winning first place both years. During DefCon 10, I was both the server administrator and the primary team member on defense, responsible for protecting our server from some of the best security professionals in the world, including enlisted personnel from branches of the United States Armed Forces.
Hold an Technican-class amateur radio license (callsign KF6RGF) and participate in the local emergency services net.
I'm maintain a strict policy of continuing self-education in both my personal and business roles.
My personal research network (10 nodes located nationally and internationally) has never been compromised by either anonymous or guest "white-hat" hackers.

References available on request.