I have been working as an infosec professional for the last 8 years. The 1st 4 I was a system integrator for the CA eTrust line of products. The last 4 have been as an application security consultant for a major international bank. I am also teaching a class on web security online.
MS Information Assurance, CISSP, GIAC Web Application Security, GIAC Certified ISO-27001 Specialist, MCSA Windows 2000, Archer Certified Professional, Toastmaster Competent Communicator
Featured commentator "8 Things We Hate About IT" – BusinessWeek.com
Analyzing threats and vulnerabilities of global business critical applications and audit that they complied with internal and industry standards including: Payment systems that move 750 billion dollars annually. Personal and Business Internet Banking applications
Consult and track fulfillment of application security controls and reduce risk throughout the SDLC process by working with the Business, Database, OS admin, and IT Security & Risk subject matter expert teams
Communicating and advising on the risks and exploitation of vulnerabilities when systems do not follow GLBA, SOX, BASEL, ISO 27001, PCI and best practices to SVP level business and IT managers