Resume
Below is the current version of my resume. It is also available via google docs at : https://docs.google.com/document/d/1-uesT99i0J1AFzn069ScYeiDyPslplZr0hTyyntJgz0/edit?usp=sharing
Aaron Grothe - CISSP
SUMMARIZED EXPERIENCE
Experienced software developer, Linux kernel contributor, and two-time International Obfuscated C Code Contest winner able to bring together cross-functional teams to implement information security best practices. Experienced project manager with a proven track record of completing challenging, complex, high-profile projects. Effective manager, team leader, mentor, and coach with a proven record of assembling and mentoring teams.
EXPERIENCE
CACI International, Omaha NE |
System Engineer |
May 2021 - Present |
Major Contributions
- Working at CACI International as a Systems Engineer.
- Responsible for the development and integration of a virtualized system stack that includes security processes and implementations supporting the SecureView Workstation (A secure hypervisor) including its virtualized desktop.
AlphaWall LLC, Omaha NE |
Founder |
November 2020 - Present |
Major Contributions
- Developing the company’s first mobile application for Android and iOS using the Flutter environment for release in third Quarter 2021.
Data Axle/Infogroup, Papillion NE |
Cloud Security Architect |
June 2020 - November 2020 |
Major Contributions
- Implemented DevSecOps Software development standards, policies, and procedures for a multi-national corporation with ten geographically distributed development teams. The goal was to improve customer satisfaction, retention by reducing software defects, reducing costs, and improving software quality:
- Set corporate standards for DevSecOps tools (SonarQube, Veracode, Dependabot) and their implementation into the development pipelines (Jenkins, AWS CodePipeline).
- Wrote the global corporate security policies for DevSecOps development and developed the DevOps migration plan to DevSecOps architecture.
- Created training materials and delivered a two-day DevSecOps developer training program.
Data Axle/Infogroup, Papillion NE |
Senior Software Engineer |
October 2017 - June 2020 |
Major Contributions
- Modernized Infogroup’s Memory-Mapped Database (MMDB), the company’s primary data delivery engine; significantly increasing performance and availability.
- Ported MMDB from AMD64 to the ARM architecture to support AWS Graviton systems to reduce system costs by 40%.
- Converted source code from C++98 to C++14, significantly increasing performance, scalability, and availability. Rewrote the system to take advantage of the Intel SSE instruction set. Implemented a new warning and error reporting subsystem, which reduced memory overwrites while producing better warnings and debug information. These enhancements set the stage for the implementation of new C++14 capabilities such as lambda functions, mutexes, and Rvalues.
Data Axle/Infogroup, Papillion NE |
Senior Software Engineer |
May 2013 - March 2017 |
Major Contributions
- Primary developer for the Infogroup Campaign Manager software and Payment Card Industry (PCI) Secure Data Transfer System.
- Wrote the business case for the retirement of Infogroup’s legacy PCI Secure Data Transfer System.
- The retirement allowed Infogroup to change from PCI Merchant Level 1 to Level 2.
- Changing Infogroup’s PCI level allowed for PCI self-auditing, which provided a yearly savings of $220k (USD).
- Continued the development of Campaign Manager Software bringing on new customers, updated environments.
- Increased reporting capabilities for customers by adding new reports to the Campaign Manager environment.
- Upgraded Campaign Manager Software to support newer versions of third-party components (i.e., Microsoft Windows Server 2012, Microsoft SQL Server 2012, Microsoft IIS, .NET)
NugentSoft, Omaha NE |
Senior Security Associate |
May 2012 - Jan 2015 |
Major Contributions
- Delivered Information Technology security assessments for commercial accounts. Assessments included security audits, security reviews, and network assessments using the OWASP framework. Also provided customers with third-party confirmation, the appropriate security controls were integrated into their projects’ design and implementation.
- Provided third-party penetration testing against customer networks and systems using MetaSploit, Nmap, Nikto, and OpenVAS.
Infogroup, Papillion NE |
Senior Security Architect |
May 2011 - May 2012 |
Major Contributions
- Delivered a detailed forensics analysis of computer systems and network components for a large United Stated Home improvement retail company in response to a cybersecurity incident. My forensic analysis provided proof information was not compromised, which saved the company having to disclose the incident.
- Revised Infogroup’s security policies for crypto, personal use, network access, software development lifecycle, and PCI security policies.
- Served as Subject matter expert for Infogroup’s security policies and procedures during third-party audits required by Fortune 100 customers.
Infogroup, Papillion NE |
Director of IT Accounting & Finance |
Jan 2008 - May 2011 |
Major Contributions
- Accountable for the continuous operation, upgrading, and implementation of new business functionality for Infogroup’s Oracle e-Business Suite Financial System (representing over $600M (USD) in annual sales).
- Responsible for completing yearly organizational review as well as identifying existing gaps. While mentoring and coaching the existing team, I added incremental staff, where necessary, to maintain production level support, along with maintaining relationships with key executives.
- Rescued a failed implementation of the Oracle e-Business Suite Fixed Assets (FA) module.
- Oversaw the design and implementation of Infogroup’s Payment Card Industry (PCI) payment system with advanced port knocking capability.
Infogroup, Papillion NE |
Senior Oracle DBA |
Mar 2003 - Jan 2008 |
Major Contributions
- Migrated Infogroup’s Oracle e-Business Suite Financials system to new hardware. Implemented Stripe and Mirror Everywhere (SAME) storage methodology, which improved performance, eliminating manual rebalancing of datafiles, and increasing availability.
- Created and implemented an e-Business audit policies framework for Oracle Financials system based on Pete Finnegan’s standards.
- Created, tested, implemented, and validated Disaster Recovery (DR) and Business Continuity Procedures (BCP) for the Oracle e-Business Suite System.
Infogroup, Papillion NE |
Senior Unix Admin |
Apr 2002 - Mar 2003 |
Major Contributions
- Relocated the company’s primary Data Centers, including systems, storage, networks, applications, backup infrastructure, security infrastructure, and all applications.
- Created new Kickstart Red Hat images for remote offices to set up their Linux systems without Unix admin support - reducing the IT support needs at the small offices.
- Performed the first installation of the SNORT Intrusion Detection System (IDS) at Infogroup.
Heimdall Linux, Omaha NE |
Founder and CEO |
Jan 2000 - Dec 2001 |
Major Contributions
- Founder and CEO of Heimdall Linux, a Common Criteria certified version of Linux available to Federal agencies and other groups requiring an evaluated Linux version.
- Raised $1.5M (USD) in Venture Capital funding from Linux Global Partners.
- Completed the initial version of the company’s first product - Heimdall Linux Firewall.
CERTIFICATIONS
You may validate the certifications at https://youracclaim.com/users/aaron-j-grothe
- ISC2 - Certified Information Systems Security Professional (CISSP) - Certificate Number 34420
- Oracle Cloud Infrastructure Foundations 2020 Certified Associate
- Oracle Cloud Infrastructure 2019 Certified Architect Associate
- Oracle Autonomous Database Cloud 2019 Certified Specialist
- CompTIA CASP+ Certification
- CompTIA CySA+ Certification
- CompTIA PenTest+ Certification
- CompTIA Security+ Certification
- CompTIA Linux+ Certification
- CompTIA Cloud+ Certification
- CompTIA Cloud Essentials+ Certification
- CWTS - Certified Wireless Technology Specialist
- ASIS Associate Protection Professional (APP)
- ITIL Foundations Certificate in IT Service Management (v3)
- NSA IAM, NSA IEM
EDUCATION
University of Nebraska At Omaha, Omaha NE
- Emphasis on Parallel Computing.
- Completed all relevant coursework for Undergraduate Computer Science Degree.
- Took extensive master’s levels classes in the Computer Science Department.
ACHIEVEMENTS
Linux Kernel Contributor
- For the following crypto modules - khazad.c, tea.c, tgr192.c, wp512.c
International Obfuscated C Code Contest Winner
- Most Conspiratorial - 2012
- Most Obfuscated Audio - 2006
Grand C++ Error Explosion Competition
- Most Surprising Output - 2015
Amateur Radio
- Amateur Extra Class License (KC0WIH)
VOLUNTEER EXPERIENCE
NEbraskaCERT, Omaha NE |
Board Member |
Jan 2003 - Present |
- Present several times a year at the request of the NEbraskaCERT Cyber Security Forum.
- Primary organizer for the NEbraskaCERT.
Omaha Linux User Group Meetup, Omaha NE |
Organizer |
April 2016 - Present |
- Assist in organizing and coordinating monthly technical meetings.
- Present several times a year at the request of the group.
Summarized experience for Recruiter Searches
Skills |
|
|
|
|
|
|
Linux |
Python |
C++ |
C |
Oracle Database |
Cloud |
Security |
Oracle UEK |
Oracle Cloud |
ITIL Foundation v3 |
CISSP |
Security+ |
PenTest+ |
Alexa Skills |
.NET/CLR |
NSA IAM |
NSA IEM |
CompTIA |
Payment Card Industry (PCI) |
Linux Kernel |
Crypto |
ASIS |
ISC2 |
Lint |
Code Correctness |
OWASP |
DevOps |
DevSecOps |
git |
Lambda |
AWS |
OAuth |
Oracle Financials |
AR/AP |
GL |
FA |
SDLC |
Management |
Director |
Bash |
Red Hat |
Cloud Architect |
Firewall |
Kernel |
Solaris |
Project Management |
Disaster Recovery (DR) |
Business Continuity Planning (BCP) |
AWS Graviton |
AWS |
In-Memory Databases |
PCI Level 1 |
PCI Level 2 |
e-Business Suite |
SNORT |
Flutter, DART |
Jenkins |
Metasploit |
Nmap |
Nikto |
Computer Forensics |
SonarQube |
Dependabot |
Veracode |
Android Development |
Mobile Development |
Debian |
Ubuntu |