November 2004 -- Present

Lead Vulnerability Researcher

Responsible for the research and development of existing and new network-based attacks, and management of the threat development team. Assisted in a number of roles which contributed to the success of the startup company (Imperfect Networks), including on-site sales engineering support in customer security labs; coordinating with representatives from vendors of other vulnerability databases and security products; and performing audits and security testing as part of Spirent's professional services.

January 2001 -- August 2003

System Administrator

Managed lab resources, including system administration and network security for more than ten Solaris and Linux workstations, two Linux servers, and an OpenBSD firewall.

Summer 2002

Lead Software Developer

Was responsible for the design and development of proof of concept bioinformatics software written in assembly language to be run on NVIDIA graphics cards.

June 2000 -- August 2001

Software Developer

Was responsible for the design, creation, testing, and documentation of a software package in Java to generate elliptic curves suitable for use in cryptography, as part of the ELIAS elliptic curve cryptography library.

April 2001 -- Present

System Administrator

Am responsible for all aspects of administration, support, and security for multiple production level servers (OpenBSD, NetBSD) used to provide more than eighty users with free Internet services (email, web hosting, data storage, messaging, secondary DNS, secondary MX).

Programming Languages: C, Java, Perl, C++, Scheme, Pascal, Prolog, BASIC, Intel x86 ASM, NVIDIA ASM, Cg, Shell Scripting (sh, bash), Maple, SQL.

Operating Systems: Windows (9x/NT/2000/XP), BSD (Open/Net/Free), Linux, Solaris.

Eta Kappa Nu -- National Computer and Electrical Engineering Honor Society, inducted in 2003
Tau Beta Pi -- National Engineering Honor Society, inducted in 2001
Pi Mu Epsilon -- National Mathematics Honor Society, inducted in 1999
National Honor Society -- Inducted in 1998

"Elliptical Curve Generation by CM in Java." Major Qualifying Project in Computer Science (December 2000)
"Games, Play, and the Student's Dilemma." Interactive Qualifying Project (April 2002)
"Combinatorial Structures in Cryptography." Major Qualifying Project in Mathematics (April 2002)

"Distributed Cracking of Elliptic Curve Cryptosystems." Rubi-Con 4 (April 2002)
"Prowessful Counterassertion, Intercommon Sunshining in Synentognathous Crossbreeds." Rubi-Con 5 (March 2003)
"/dev/erandom: The Inner Workings of a Provably Secure PRNG." Toorcon 101 (September 2003)
"Computers Without Hardware; Programming Without Coding." Northern Ohio Technical Advancement Conference (April 2004)
"Pseudorandom Number Generation, Entropy Harvesting, and Provable Security in Linux." Black Hat Europe (May 2004)
"Making Use of the Subliminal Channel in DSA." The Fifth Hope (July 2004)
"Subliminal Channels in Digital Signatures." DEF CON 12 (July 2004)
"Learning OpenPGP by Example." 21st Chaos Communicaton Congress (December 2004)
"Applied Cryptography? Oh, I skimmed through that book once." Shmoocon (February 2005)
"Building Communities in Self-Destructive Environments." Northern Ohio Technological Advancement Conference (April 2006)
"Breaking Down the Web of Trust." 22nd Chaos Communication Congress (December 2005), HOPE Number 6 (July 2006)
"Your Name, Your Shoe Size, Your Identity? What Do We Trust in This Web?" DEF CON 14 (August 2006)
"Key and Identity Management With PGP" Toronto Area Security Klatch (February 2007)
"Online Communities and the Politics of DDoS" Northern Ohio Technological Advancement Conference (April 2007)
"A Crash Course In The Math of Public Key Cryptography" Chaos Communication Camp (August 2007)