Resume: Michael H. Buselli

Overview

Over a decade of professional experience with computers in three subfields resulting in the ability to excel at system architecture and system engineering.
Programming is the cornerstone of my skill set, and I have excelled in positions where it was my primary duty. Upon this foundation I have also built skills with information systems security and Unix systems administration.
Highly skilled in programming with Ruby, Rails, C, Perl, and Kornshell. Uses Python, PHP, HTML, CSS, and Javascript effectively.
Very extensible and is often utilized by organizations well beyond formal boundaries of the job role.
Deep background in all facets of computing that results in grasping new ideas quickly and thoroughly.
Understands that management decisions cannot be rendered independent of analysis of the return-on-investments of given options against each other, and against the cost of inaction.
Produces with ease documentation of high-level processes for management and technically detailed procedures for staff.
Exemplary troubleshooting skills highlighted by logical elimination of possible root causes until the problem is identified and remediated.
Functions expertly in Unix, Macintosh, and Windows environments.
Professional memberships with (ISC)², and the IEEE Computer Society.

Employment

Senior Software Developer (February 2009 – Present)

Follett Software Company
1391 Corporate Drive, McHenry Illinois 60050, +1 815-578-3467, +1 800-494-0005

Senior Software Developer (October 2009 – Present)

After being reorganized into a full-time development position, lead team efforts in major software architecture enhancements
Managed team dynamics and provided motivation to other developers in Agile environment with pairing
Automated software deployments with Capistrano
Used Hudson to automate continuous integration builds and production releases
Developed software with Ruby, Rails, Python, and PHP
Automated testing with RSpec, Factory Girl, and Selenium
Performed load and stress testing with JMeter
Continued to provide security expertise to the team regarding encryption and X.509 certificate use

Senior Software Tools and Systems Support Developer (February 2009 – October 2009)

Joined Follett in a self-directed position providing development team support for Git, StarTeam, Confluence, and JIRA
Introduced Kerberized Linux configuration for system authentication with Active Directory
Wrote program to migrate StarTeam data into Git and validate migrated code repositories
Provided security expertise to the team regarding encryption and X.509 certificate use

Principal (June 2008 – Present)

CosineWave Technologies Inc.
Client Reference: Dean Sellis (contact information on request)

Worked as a self-employed independent consultant providing security expertise and software engineering to clients and partners
Configured and troubleshoot IKE/IPSec VPNs
Software engineering with Visual Basic for Applications (VBA), Ruby, Python, Django
Wrote custom Solaris 10 JASS scripts to harden systems

Software Engineer (part-time, November 2007 – December 2008)

WhyGoSolo
Reference: Ann Bernard (contact information on request)
Reference: Keith Casey (contact information on request)

Managed company's main Linux system and hosting provider accounts
Software development for main application using Ruby on Rails 2.0, RSpec
As a security expert, provided insights into application security and compliance issues
As an application developer, upgraded main application from Rails 1.2 to 2.0

Information Security Architect (July 2004 – July 2008)

CCC Information Services Inc.
222 Merchandise Mart Suite 900, Chicago Illinois 60654, +1 312-229-2200
Reference: Andrew Steingruebl (contact information on request)
Reference: Joe Pauss (contact information on request)
Reference: Shannon Courtney (contact information on request)

Helped company achieve Sarbanes-Oxley compliance
Communicated customer security requirements to the business and documented business practices for customers
Reviewed architectural security and assessed prospective risk for company software releases
Coordinated with security vendors during third-party vulnerability assessments
Wrote secure web coding standards, based on OWASP, and train developers on application security issues
Scanned systems for network vulnerabilities with nCircle IP360 and worked with teams to mitigate standard OS vulnerabilities
Wrote business cases for projects to improve security
Used Snort and Sourcefire 3D with RNA to detect potentially malicious attacks that could threaten the enterprise
Provided technical leadership and assistance to Unix team

Senior Network Systems Specialist (May 1999 – July 2004)

Abbott Laboratories, Global Technology Solutions
100 Abbott Park Road, Abbott Park Illinois 60064, +1 847-937-6100
Reference: Clyde Anderson (contact information on request)

On team of thirty responsible for approximately 700 Unix hosts
Primary point of contact for forty-three Unix hosts including firewalls and Internet facing services
Responsible for drafting and executing project plans including requests for capital and non-capital expenditures
Held project responsibilities for system architecture and determining size requirements.
Participation in corporate wide operations security council that governed architecture and approval of firewall requests
Wrote scripts for completely automated Solaris Jumpstart (Bourne shell)
Wrote scripts for Sun auto-patch "boot net - patch" (Bourne shell)
Used Perl to write an enterprise software management script and maintain specialized NIS environment
Wrote a custom Samba VFS module in C
Lead several instructional sessions on "Topics in Unix" that covered scripting in shell and Perl, and introductions to various Unix programs

Systems Administrator (March 1998 – May 1999)

First Options of Chicago (subsidiary of Spear, Leeds, and Kellogg; now Goldman Sachs)
440 South LaSalle Street Suite 1400, Chicago Illinois 60605, +1 312-362-3000

On team of six responsible for ninety Sun machines
Managed Join DHCP/DDNS, configured partner connections with aspppd, and installed programming software for developers

Systems and Software Engineer (April 1997 – March 1998)

Spark Services, Inc., a subsidiary of Cendant
1603 Orrington Avenue Suite 700, Evanston Illinois 60201
Reference: Andrew Hatchell (contact information on request)

On team of four responsible for 65 Intel based computers (mostly OS/2)
Responsible for customer service and quality assurance applications, and credit card transaction batch processing systems

Computer Technician (part-time while student, October 1995 – June 1997)

University of Chicago
1116 East 59th Street, Chicago Illinois 60637, +1 773-702-1234

Unix Technical Computing Assistant (October 1995 – May 1997)

On team of two responsible for 20 SGI machines, two Sun machines
On team of about twelve partially responsible for 60 various other Macintosh and Windows machines
Lead cluster migration from one SGI architecture to another
Implemented Macintosh user authentication to Unix servers and a system that integrated the BSD printing system with MacOS and Windows

Resident Computing Coordinator (April 1997 – June 1997)

Sole individual responsible for one Sun server
Interviewed and hired Resident Computing Assistants, and acted as an emissary between university community and Resident Computing Assistants
Designed, recommended, and implemented improvements to dorm networks

Resident Computing Assistant (October 1996 – March 1997)

Sole individual responsible for six Macintosh systems
Provided connectivity support for dorm residents

Assistant Administrator (January 1997 – March 1997)

Partially responsible for five Windows NT systems

Professional Training and Conferences

(registered) Conference: Windy City Rails 2010 (September 2010)
(planned) DEF CON 18 (July 2010)
(registered) Black Hat USA 2010 (July 2010)
Crypto for Pen-Testers by Matasano (October 2009)
iPhone Application Development (October 2009)
Conference: Windy City Rails 2009 (September 2009)
Conference: Chicago NetSecure 08 (March 2008)
Conference: Chicago Tech-Security (March 2008)
Conference: RailsConf 2006 in Chicago, Illinois (June 2006)
Conference: OWASP 2005 in Washington, DC (October 2005)
Project Management (December 2002)
Red Hat Linux System Administration (December 2002)
Conference: USENIX Technical 2001 in Boston, Massachusetts (June 2001)
- Sendmail Configuration and Operation
- Basic Management Techniques
- Solaris Internals: Architecture, Tips, and Tidbits
Oracle Enterprise DBA Part 1A: Architecture and Administration (November 2000)
Netscape LDAP Server (June 2000)
High Performance Work Teams (April 2000)
Conference: USENIX LISA 1999 in Seattle, Washington (November 1999)
- Configuring and Administering Samba Servers
- Amd and Automounter Utilities
- Applications of Cryptography
- Computer Attacks: Trends and Countermeasures
Solaris Performance Tuning (July 1999)
Solaris 7 Administration II (July 1999)
Conference: USENIX LISA 1998 in Boston, Massachusetts (December 1998)
- Administering Windows NT: A Course for Unix People
- Printing with LPRng
- Administering Secure Web Servers
- Advanced Topics in DNS and BIND
Solaris 2.6 Administration II (May 1998)

Michael H. Buselli, CISSP