|
Address |
: 162 Edward Road, Nottingham, NG2 5GF, UK. |
|
Phone |
: +44-(0)709-229-5385 (YAC) |
|
: +44-(0)115-982-5752 (Fax) |
|
|
|
|
|
Marital status |
: married |
12 years experience in IT systems management, including system architecture and planning, systems integration, performance tuning, systems security, network and inter-network information services.
An expert in UNIX management and administration, majoring in Solaris from versions 2.1 to 8, with proven skills in AIX, HPUX and LINUX.
A skilled integrator of UNIX and LINUX with Windows 2000, NT, 9x, Millennium and XP.
An expert in host based and network security with extensive experience of;
hardening bastion hosts,
intrusion detection,
strong authentication and privacy with Kerberos, secure shell and NIS+,
firewalling with SunScreen, Firewall-1, ipchains and iptables,
vulnerability testing.
Experienced in the configuration and management of thin and ultra thin client technologies including Solaris SunRay.
An expert in network management with 11 years experience of
Experienced integrator of network services and e-mail across international wide area networks using TCP/IP and UUCP.
Substantial experience of database configuration and support using ORACLE, INGRES, & SYBASE.
Fluent in the major UNIX shell script languages sh, ksh, csh, awk and Perl.
Skilled producer of technical and user documentation. Experienced creator of manual pages and intra-net sites integrating documentation and administrative tools.
A regular user of mark-up languages and with considerable experience of HTML, nroff and troff.
Some experience of project management and extensive experience of managing budgets, hardware and software procurement, tendering and contract negotiation.
A skilled and experienced trainer who has created and presented a variety of technical and non-technical courses.
The holder of a Post Graduate Diploma in Computing, a Post Graduate Teaching Certificate(PGCE) and a BA (Honours).
A member of the Association for Computing Machinery.
West Bridgford Community Network.Project: Assessment of E-Government developments. Review of County wide infrastructure, including County Hall, schools, libraries, local offices, and peripatetic working. Assessment of requirements and risks in implementing the guidelines for e-Government from the Office of the Deputy Prime Minister (ODPM), by 2005.
Development of a program for progress toward;Review of partnership programs and other local authority initiatives to implement Customer Relationship Management (CRM), Content Management Systems, (CMS) and Electronic Records Management (ERM).
Rahford International.
Web design and search engine promotion. (1/2002-9/2002)
QIIS - Birmingham UK.
Systems
consultant. (09/2000 – 10/2001)
ENVIRONMENT: Solaris 2.8, Windows 2000, Windows NT 4, Windows 9x, Windows Millennium, Enterprise E450, Netra T1, Fijitsui (i386), Ultra 5s.
Project: Development of bespoke community intra-net / meta-net product for ntl.
Design and build of network and systems architecture for the development and test environments.
NT, Windows, Solaris systems integration with NFS and SMB using Samba.
Installation and configuration of SunScreen firewall.
Configuration and management of ISDN router including PAT (port address translation) configuration.
Configuration and management of split horizon DNS.
Installation and configuration and support of Oracle 8.1.6 data bases, Oracle Internet Directory server (OID/LDAP), Apache web servers Perl and Mod Perl.
Building of product distribution package.
Writing and maintaining scripts for product installation and patching.
Designing the systems architecture for virtual ISP for business and virtual intra-net services.
Designing the system architecture for a new office suite to house print publishing production and software development systems.
Project management for office/IT centre relocation.
Sun MicroSystems - McLean VA & Cairo
Egypt.
Senior Administrator. (04/00 - 08/2000)
ENVIRONMENT: Solaris 2.7, Windows 2000, Enterprise E4500, E450s, E250s, A3500 fibre channel controllers, A1000 disk arrays.
Project: Building and testing a new Egyptian ISP.
Building configuring and testing remote PODs for government and university use.
Configuration of SunScreen firewall.
Configuration of iPlanet web server, messaging server, proxy server, LDAP server and reverse proxy server.
Integration with Windows 2000 using Citrix Metaframe.
Installation and configuration of SunRay servers with SEAM (kerberos V) user authentication and smart cards.
Installation and configuration of video conferencing using SunForum.
Installation of Netscape Communicator and StarOffice. Support for installation of Oracle 8 and Remedy.
Installation and configuration of split horizon DNS.
Installation and configuration of DiskSuite.
Creating a web based administration server integrating local and vendor documentation with interfaces to server administration GUIs.
Building software and configuration distribution server.
Writing HTML documentation.
Configuration of the user environment.
WS Atkins - Epsom, Surrey UK.
Systems
administration consultant. (07/99 - 03/2000)
ENVIRONMENT:Solaris 2.6/7, Windows NT4, Windows 95/98 and VAX. Enterprise E4000, E450s, E250s.
Project: UNIX migration (from VAX) and year 2K project.
Building of Sun E4000/E250/E450 hosts.
Installation configuration and testing of StorEdge software raid, hardware raid on SRC/P controllers. Installation and configuration of Veritas VxFS, and UFS file systems.
General security consultation and vulnerability assessment. Installation and assessment of Kerberos 5 servers. Assessment of password strength. UNIX and Windows clients.
DNS procedures and management.
Introduction of NIS+. Configuration, scripting, procedures and documentation.
Building of administration web site.
Support for Oracle database environment architect.
Support for Ingres, Sun accounts and OASIS.
Systems administration consultant. (06/99 - 07/99)
ENVIRONMENT: HPUX 10.20/9.7, Solaris 2.x, SunOS 4.1.x, Windows NT4, Windows 95, Windows 3.11.
HP 9000 K series server, 49xB132L+, 16xB180L, 4xC100, 3x100, 5x60 21 Sun sparc stations and 44 PCs.
SECURITY.
Implementation of restricted access scheme for developers using remote access from India to Antwerpen.
Implementation of periodic checking for weak passwords on Sun and HP networks.
ADMINISTRATION.
General systems administration and support for international telecoms development engineers.
NT, Windows 95, HPUX integration using netbios.
Review, correction and testing of sendmail configuration.
TOKYO MITSUBISHI - City of London. UK.
UNIX network services and security consultant (07/97 - 12/98)
UNIX consultant. (06/96 - 06/97) #
ENVIRONMENT: Solaris 2.x, SunOS 4.1.x, Windows NT.
FDDI server farms, ATM backbone to 10/100 Base T on the desk top. Wellfleet and Cisco Routers, Agile 125s. WAN lease line, ISDN and analogue dial-up connections to Frankfurt, Brussels and Tokyo. Secure dial-up via USR hub passing through radius server to ACE server using Secure ID. Feeds from Bloomberg, Reuters and 4cast.
1,400 hosts including PCs, Starfire (Enterprise 10000) Enterprise 5000, Ultrasparcs, Sparc 20s, 10s and 2s. Over 500 users.
Applications software supported: FICAD, GLOSS, OASIS, OPUS, MUREX, CATS, SUNGL, SYBASE, Netscape, Netscape SuiteSpot (Mail Server), Open Bloomberg, Reuters 3000, Tripwire, Firewall-1, TCP Wrappers.
SECURITY.
Configuration and management of Checkpoint's Firewall-1.
1 NT management interface and 1 Solaris management station.
2 synchronised redundant firewalls for market data feeds and third partys support (Solaris).
1 Solaris internet firewall.
1 Solaris extra net firewall.
Configuration and management of US Robotics dial up hub (ISDN and analogue), radius server and ACE server, with secure ID.
Installation of Tripwire intrusion detection and general configuration and auditing of secure servers accessible via the internet.
Periodic reviews of T-MI security and vulnerability analysis reports.
MAIL.
Building e-mail architecture with extra-net connections to Tokyo Securities, Belgium, Frankfurt, Hong Kong and the Bank of Tokyo Euromail network.
Integration of Netscape, Microsoft Exchange, Lotus Notes, and UNIX Sendmail.
ATM.
Configuration and management of ATM management module with level 3 routing, running under SunOS 5.5.
LDAP.
Upgrading of LDAP server including migration of ACLs and user defined objects and attributes.
Creation of replication server and configuration of DNS to enable modified access scripts to provide continuous service in the event of a server failure.
DNS.
Building of restricted external and internal primary and secondary servers.
Building of additional servers at disaster recovery site, Brussels and Hong Kong.
NIS.
Building and management of NIS+ server to distribute mail alias tables and provide secure access to network management boxes by technical support teams.
WWW.
Building of Apache based web site providing comprehensive documentation library services, statistics and continuously updated server logs for recording secure remote access, e-mail activity and DNS usage.
Writing of extensive documentation on change procedures, NIS, DNS, E-Mail, security, network infrastructure, UUCP and LDAP.
UNIX consultant within Technical Support. (06/96 - 06/97)
CONFIGURATION of USER ENVIRONMENTS.
Building a configuration and administration system to manage the end user environment across heterogenous desktop and server platforms.
The provision of a uniform X-Windows environment for both NT and UNIX desktop boxes.
PERFORMANCE TUNING & KERNEL CONFIGURATION.
Rebuilding of SunOS 4 kernels to incorporate FDDI.
General kernel configuration.
DNS, NIS, ROUTING & VLAN.
Scripts to propagate NIS table changes to DNS.
Tracing of network problems and VLAN management.
Identification and resolution of NIS problems.
MAIL CONFIGURATION.
Writing a new Sendmail rule to handle the variety of internal `From:' addresses being generated by MS-MAIL (on NT boxes), mailtool and rmail on SunOS and Solaris boxes.
Writing a paper on the various internet mail standards and their relative merits.
Extending a Sendmail rule to identify incorrect 'from' addresses on incoming mail envelopes that are likely to cause an SMTP protocol error when being transfered from the mail hubs to the NT mail server.
PRINTING.
Writing of scripts to:
generate and distribute appropriate printcap files to 140 hosts,
delete any redundant queues in the spool area,
create, configure and start any new queues,
generate Solaris 2.x printer configurations.
SECURITY.
A security review which included testing the system with a range of currently available tools.
Installation of C2 security and Clyde Hoover's npasswd to enforce the selection of strong passwords.
BACKUPS - DISASTER RECOVERY.
Correction of nightly dump scripts and automated transfers of mission critical data, including databases, to remote disaster recovery site.
HTML.
Installation (and modification) of T.A. Phelps 'Rosetta Man' to generate HTML pages from UNIX man pages and the in house documentation on the fly.
CLMS - UNIVERSITY of NORTH LONDON December 1993 - June 1996. Reference
UNIX systems management & development / E-mail.
ENVIRONMENT: Solaris 2.x, SunOS 4.1.x, VAX VMS, DOS 6, Windows 3.1, Novell 3.x.
System:
|
USERS |
Networks |
Sub-nets |
Hosts |
X-terms |
|---|---|---|---|---|
|
10,000 |
TCP/IP |
2 |
1 Sparcserver 20 |
10 Sun 3s |
|
|
IPX |
|
1 Sparcserver 10 |
8 Tektronix 217c |
|
|
|
|
4 IPCs (data-less) |
20 NCD 17CRT |
|
|
|
|
6 ELCs (disc-less) |
|
|
|
|
|
4 Classics (data-less) |
|
Gateway to VAX cluster and sub-networks of 400 PCs over 4 sites.
I was responsible for all UNIX systems network management and security at the School of Mathematics and Computing. The brief included systems design and management to enable the system to:
be able to handle user induced network storms when classes of 80 or more students requested the same resources simultaneously.
be available 24 hours a day 365 days per year.
The role also included:
Hardware procurement, performance specification, drafting of tender documents and contract negotiation.
Securing the system prior to direct connection to the Internet.
Devising a scheme to provide network and host based security which would provide an appropriate security level for students, academic staff, the academic registry, accounts and administration.
Evaluation of available X.500 servers and clients for UNIX and WINDOWS based machines and suitable servers for the VAX (VMS) to provide directory services and data origin authentication, and public key distribution for PEM (Privacy Enhanced Mail) extended mail user agents.
Writing a suite of system administration tools, employing NIS+. These tools gave front line sup port staff the ability to batch process 400 new accounts in a day without root privileges. These scripts provided access where appropriate to INGRES and SYBASE databases.
Writing full and complete man page documentation using troff for all the utilities created.
Assisting AUSCERT in understanding NIS+ scripting and configuration problems, and provided scripts to assist administrators on large NIS+ sites around the world.
Providing systems support for WWW server, DNS server, IMAP server, NFS server, NIS+ server.
Designing and presenting training courses for front-line support staff, academic staff and students.
System upgrades from Solaris 2.2 to 2.3 to 2.4 to 2.5.
Reviewing Sun's monthly patch lists and installing all those necessary to maintain the smooth and secure running of the system.
Installing and supporting over 30 applications.
Chairing the School of Computing's UNIX users group.
Participation in the UKERNA PGP working party.
Technical consultant to the University's working party.
In March 1996 I was appointed to a new post within Information System Services (formerly CLMS). In this new role I was to provide UNIX based services for the whole university while ensuring continued service integration with the VAX and the PC networks across 5 sites.
HOUNSLOW BOROUGH COUNCIL Feb. 91 - Dec. 1993. Reference
Systems Manager.
ENVIRONMENT: AIX 3.2, AIX 2.2., DOS, MS-WINDOWS, 3270 emulation to IBM mainframe.
BSC connection to IBM mainframe via multi-protocol adaptor. Wide area network to 3 additional sites with multiplexed leased line and dial-up connections.
120 User accounts
RS6000 and RT6151 servers
64 Terminals WY50/60
IBM 3270 Terminals
70 PCs using FtP TCP/IP stack WY60 and 3270 Emulation
Installation and configuration of the BSC connection to the Town Hall mainframe using a multi-protocol adapter over a leased line.
Building the TCP/IP LAN and the multiplexed WAN connection of three advice centres to the network via leased lines with fall back to dial up connections.
Migration of the system from AIX 2.x running on an IBM 6151 to AIX 3.x on an RS6000.
Creation of a C programme to buffer the printer output from the mainframe and make it available locally to the UNIX terminals and PCs using 3270 emulation.
Configuration and support of all the applications used, including UNIPLEX and Flare.
Database administration for Sculptor 4GL database management systems.
Configuration and support of NIS, NFS and PCNFS.
F1 Ltd. 1986 - 1992
I started a company called HCaTs (Hackney Computer and Transport Systems) in 1986. At the time I was the Director of Hackney Community Transport.
The new organisation was to write a CT application and to develop a booking system for London Regional Transport's Dial-a-Ride transport network.
As director of Community Transport I took the company from startup to the employment of 21 staff running a large fleet of vehicles and workshops. The company at that point had a turnover of over a million pounds a year.
In 1990 I left Hackney Community Transport to work as a consultant/programmer with HCaTs or F1 Ltd as the company had been renamed.
During my time with F1 I worked with a number of companies some of which I continue to support on an ad-hoc basis.
|
Lambeth Health Authority |
Administrators training course in UNIX. |
|
South Glamorgan C.C. |
Design and presentation of a systems software design and
coding. |
|
Plymouth Guild of Voluntary Services |
System analysis, software design and coding in Clipper of vehicles, drivers, users and places data bases and networked on-line booking system. |
|
Nevica Contracts |
Systems analysis, design and coding of networked ski-wear stock movement control system. |
|
Gus Davies |
Systems analysis, software design & coding. Porting of large plumbers and builders merchants price book from Onyx 2000 mini-computer to DOS based micro. Subsequent rewriting in Clipper. |
|
Auto-Plan |
Porting large database and holiday booking system from Onyx 2000 mini (Mercator) to Thoroughbred Basic under Xenix. |
|
Connexions |
Consultation on the design of a computer training & home working project for people with disabilities. |
|
Catford Unemployment Project |
Consultation on the selection of hardware software for a computer training project. |
|
Fast Forward Courier Service |
Consultation on the management & user implications of computerisation. |
|
London Regional Transport |
Project manager. Development of networked Dial-a-Ride dispatch system. |
|
SANS - San Diego |
1999 |
Windows NT Security Advanced |
|
|
1999 |
Windows NT Security Basic/Intermediate |
|
|
1999 |
Advanced Intrusion Detection and Packet Filtering |
|
|
1999 |
E-commerce |
|
|
1999 |
Penetration Methodology/Investigating Computer Crime |
|
|
1999 |
Network Based Intruder Detection |
|
|
1999 |
Effective Incident Response |
|
SANS - London |
1998 |
Intrusion detection workshop. |
|
SUN Manchester |
1995 |
|
|
IBM Sudbury |
1993 |
|
|
|
1991 |
|
|
|
1991 |
|
|
MPD Systems |
1991 |
|
|
Flare Systems (Bath) |
1990 |
Flare Trading Standards System. |
|
City University |
1989 |
More Truth About UNIX (10 weeks). |
|
|
1988 |
The Truth About UNIX (10 weeks). |
|
|
1988 |
Structured Programming (10 weeks). |
|
City Polytechnic |
1988 |
First stage Certified Accountancy. |
|
Middlesex Polytechnic |
1987 |
File processing (Summer School). |
|
Open University |
1986 |
Effective Management. |
|
|
1985 |
Electro-mechanics. |
|
|
1985 |
Calculus. |
|
|
1984 |
Science Foundation Course. |