Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
 
Contact Information
Name: Matthew Parsons
Email: mparsons1980 (at) gmail (dot) com [email concealed]
Location: Fort Worth, Texas, United States
Resume
Position/Title: Security Engineer
Resume: Matthew J. Parsons

5508 Hidden Creek Circle, Suite 351 Fort-Worth TX 76109 • mparsons1980 (at) gmail (dot) com [email concealed] • 817-238-3325

WORK EXPERIENCE

Parsons Software Security Consulting, LLC, Fort Worth, TX June 2007-Present

• Owner, C.E.O and founder of Parsons Software Security Consulting, LLC, www.parsonsisconsulting.com, fully insured to 4 million dollars.

• Subject Matter Expert in PCI compliance, software and database security, Enterprise Risk Management

• Partnered with Ounce Labs, www.ouncelabs.com

Lockheed Martin, Fort Worth, TX Feb 2006-June 2007

Systems Integration Analyst, Enterprise Information Systems

• Secure Coding, Web Penetration Testing and Database Auditing Point of Contact (POC) for Fort Worth, Aeronautics Business Unit and Enterprise Information Systems SD&I Fort Worth

• Member of Lockheed Aeronautics, Network Operations Security Center (NOSC)

• Learned the processes involved in Security Engineering

• Security Risk Assessment Processes. Active Secret Security Clearance

• Knowledge of Standard Engineering Process (SEP)

• Kept senior management informed of Information Security Risks, Vulnerabilities and Trends

• Scanned Databases with AppDetective and offered mitigation techniques to DBA’s to harden databases

• Manual testing of web applications for security vulnerabilities

• Appointed Security Engineer, Technical lead and Subject Matter Expert (SME) on multiple projects

• Scanned applications with Static analysis tools and reported vulnerabilities to developers and offered advice for mitigation

• Offered Technical input on selection for Ounce Static Analysis tool for Secure Coding Integration Program (SCIP) for all Lockheed Martin

• Active publisher and contributor on Lockheed Martin Secure Coding Community of Practice website.

• Worked on common encryption component for plain text passwords

• Reviewed suspicious and malicious code

• CISSP site coordinator for corporate wide Lockheed Martin CISSP class

• Mentor to Lockheed Martin Network Support employee in Liverpool, NY

• Trained information owners in the implementation of necessary software and database security controls

• Developed information security software procedures and best practices.

• Analyzed information security environment and developed security measures to safeguard information against

accidental or unauthorized modification, destruction, or disclosure. Met with management, development personnel, risk assessment staff, auditors, and security departments identifying and implementing security plans for databases, software applications and computing infrastructure.

• Developed information security software procedures and best practices.

• Mapped DoD 8500.2 to corporate and Aero Code Policy for customer.

Lockheed Martin, Liverpool, NY June 2005-Feb 2006

Desktop Support Analyst- Contract

• Worked 75% desktop support analyst with the break fix team of three people supporting

2300 end users. Windows Administration. Incident response and problem resolution. Resolved 20-30 tickets

a week.

• Worked 25% on asset management project and saved company 100K in 6 months.

• Executive conference room support with computers, audio visual equipment and projectors.

• Project lead on hard drive refresh plan from Windows 2000 to Windows XP, Microsoft Share point support.

Lockheed Martin, Liverpool, NY Dec 2004-June 2005

Computer Deployment Analyst- Contract

• Built and deployed computers for clients working at Lockheed Martin. Incident response and problem resolution.

• Troubleshooting for software and hardware issues with clients’ computers, Windows Administrator

• Worked with Network team wiring network closets and installing network catalyst

Verizon Wireless, Dewitt, NY August 2004-Dec 2004

Customer Service Technician-Contract

• Increased sales revenue in accessories and enhanced features

• Incident response and problem resolution.

• Decreased work time on cell phones from four hours to 45 minutes

Career Services, SUNY Oswego, NY Sep 2003-Aug 2004

Information Technology Assistant

• Assisted staff with Information technology including Mac’s and PCs site administrator

• Worked with job vacancy database and listserv to disseminate information to clients

The Raven Pub, Oswego, NY June 2002 – Aug 2004 Security

• Worked physical security and checked Legal Identification for Establishment

Computer Receiving Clerk, Eddies Big M Grocery Store, Mexico, NY Oct 2001 – June 2002

United States Air Force Reserves, Detachment 535, Syracuse, NY August 2000-Oct 2001

• Active Secret Clearance May, 2001, E-3 Airman 1st class, Honorable Discharge DD-256

¬¬¬¬¬¬¬¬¬¬¬¬¬¬¬¬¬

EDUCATION

Masters of Science in Management, Colorado Technical University

Focus in Information Security

May 2006- August 2007 GPA: 3.94

Bachelor of Arts in Information Science, State University of New York at Oswego

Focus in Psychology and Human Computer Interaction

August 2004 GPA: 3.25

Information Systems Security Certificate, 2006

Information Systems Security Management Certificate, 2006

Information Systems Certification and Accreditation Certificate, November, 2006

Active Secret Clearance since May, 2001 good through January, 2017

Aspect Security Secure coding .NET course, March, 2007

Aspect Security Secure coding J2EE/Java course, May, 2007

Software Security Summit, Baltimore, MD, June, 2006

Attended Qualified Systems Engineering Training Class, July, 2006

Foreign Object Debris Training, September, 2006

International Traffic and Arms, (ITAR) briefing, August, 2006

Lockheed Martin, New Employee Orientation, Orlando, FL May, 2006

Attended Network World Security Conference, Dallas, TX Fall, 2006

Attended IEEE, Metrocon, Arlington, TX Fall, 2006

Guest Speaker for Information Science Department at Oswego State University, November, 2005

Guest Speaker at Fort Worth Java User Group on Software Security, February, 2007

Site Coordinator for Lockheed Martin CISSP corporate class, December, 2006- April, 2007

School of Information Studies minor Entrepreneurship, Syracuse University GPA: 3.93

Air Force ROTC Scholarship Aug 1999-May 2001

• Winner, Cadet of the Semester Dec 2000, Syracuse University Detachment 535

• Honorable Discharge United States Air Force Reserves, DD-256 Airman 1st class Oct. 2001

• T-38 incentive ride and Air Force ROTC internship at Shepard Air Force Base, Texas

• Deans list multiple semesters at both Universities

• Achieved a 4.0 GPA Fall Semester 2000, Syracuse University

• Commanding Officer of a 110 cadets, Marine Corps JROTC Mexico High School, Mexico, NY, Sept 1998- June 1999

SKILLS

Computer Operating Systems: UNIX, Linux, Ubuntu, Windows 95, 98, 2000, XP, Mac OS 9, OS X, MS-DOS, Solaris 9

Software: Microsoft Office, Quick Books 2007, Microsoft Project, Microsoft Visio, Outlook, MARS Remedy, Microsoft Share Point, Windows Administrator Tools, Active Directory, Microsoft Exchange Server 2000, Directory Resource Administrator, Visual Studio .NET 2003, Visual Studio 2005, Fortify Static Analysis Tool, Serena Change Man Dimensions, Perforce, IBM Rational Developer, Eclipse, App Detective database scanning tool, Windows Server 2003, Windows SQL Server 2000, Internet Information Services, Ounce Labs Static analysis tool, SPI Dynamics Devinspect, VMware, Web Scarab, Web Goat, Paros, 010 editor, X-way Forensics, Win-Hex, PGP, Microsoft Threat Modeling tool, Mozilla Firefox plug-ins including: Firebug, Web Developer, Switch Proxy, Live HTTP headers, User agent switcher, Jsview, Burp Suite, Ethereal, Nessus, Microsoft Baseline Security Analyzer, GRC-Shields UP!,

Languages: C, C#, Visual Basic.NET, Java, J2EE, SQL, CLIPS, Perl, Prolog, XML, HTML, Java Script, SQL

General Skills: PCI compliance remediation, advanced searching, system analysis design, project management, leadership, time management, public speaking, knowledge of networking, accounting, strong written and verbal communication skills, customer service, consulting, cellular technology and networks, software development life cycle (SDLC), knowledge of binary and hexadecimal number systems, sales, problem solving, computer building hardware and software, computer deployment, break fix, trouble shooting, security engineering, manual and static analysis tool code review, web penetration testing, network security fundamentals, knowledge of Orange Book (TCSEC) and Rainbow series, Security Policies and Procedures, Security Management, Security Engineering Capability Maturity Model (SSE-CMM), Defense Information Systems Agency (DISA) publications, National Institute Standards and Technology (NIST) publications, DoD 8550.2, DITSCAP, Evaluation Assurance Levels (EAL) Common Criteria of Information Security Evaluations, Open Web Application Security Project.

ACTIVITIES

Member, IEEE Member #87051477 Aug -2006- Present

Member, Phi Kappa Phi Honor Fraternity Member #11272553 April 2003 –Present

Member, Information Systems Security Association Aug- 2006-Present

Member, Lockheed Martin Recreation Association Cycling Club Feb 2006- Present

President, Oswego State Cycling Club Jan. 2004 – Aug 2004

Member, Theta Chi Fraternity, Syracuse University Mar 2001-Jan 2006

Teaching Assistant, Systems Analysis and Design Syracuse University Aug 2000-Dec. 2000

Research Assistant, Institute for Sensory Research Syracuse University Aug 2000-May 2001

Member, Onondaga Cycling Club May 2000-Jan 2006

Member, Lockheed Martin Auto Club Aug 2006- Present

Certified Level 1 Snowboard Instructor Feb 2003- June 2006

Certified Life Guard Sept 2001- Sept 2003

Certified CPR Sept 2001- Sept 2002

NASTAR Alpine Snowboard Racer Dec 2004- Jan 2006

Member, Fort Worth Java User Group March 2006-Present

 







 

Privacy Statement
Copyright 2009, SecurityFocus