23 Yrs IT Professional, 10 Yrs Self Employed consultant Email: mackkm@ktkconsult.com

Kenneth M Mack mackkm@ktkconsult.com SUMMARY OF EXPERIENCE: 23 Years of experience in network design and software products and services. Task Manager and Project lead for design and development of Oracle based database projects. Engineering lead for groups in network design, capacity planning, and implementation. Project management experience in LAN/WAN technologies and database development. SANS GIAC/GSEC Certified #3586. - Provided consulting services for 9 years to the Metropolitan Washington Airports Authority (MWAA) in planning, designing, implementing, updating and troubleshooting, working with systems, networks, hardware, software, and security. - Senior network architect and engineer performing design, implementation, management, and security of MWAA's LANS, WANS, and Internet communications projects at Reagan National Airport (DCA), Dulles International Airport (IAD) and Headquarters. - Senior network engineer and security systems administrator for MWAA and IT support of Airport Operations. Managed a team of network operations engineers in support of NASA contract. - Managed many projects in multiple disciplines from network installations, computer room relocation, and Y2k Projects in software development and Y2k control center creation to Oracle and SQL application development. - Full life cycle support to systems and applications critical to airport operations. NIST information assurance Certification and Accreditation (C&A) of systems and processes. Implementation and integration of airport badging system, processes and network with new TSA requirements. DOMAIN EXPERTISE: Networking Cisco Level 2 and Level 3 Switching TCP/IP Network Design. Network Security, Net and Host based IDS, Firewalls, Cisco PIX, Access Control Systems, Physical Security Systems Network Management, Network Sniffers, SNORT Database Oracle 8i and 9i PL/SQL and Administration and Security SQL Server 2000 TSQL, and Server Administration and Security SQL Server Data Transformation Services (DTS) package development Access 97, 2000, App Development and Security Applications/OS Developer in Oracle Forms and Reports. MS Access, Word and Excel, MS Project, Crystal Reports, Erwin Db Modeling. Security Information Assurance, Security Risk and vulnerability assessments and audits, Security Policy Development, Application Security Testing. ANCILLARY EXPERTISE: MS Office applications (Word, Excel, Access, Power Point, Visio, Project) Proposal Development, Technical Writing Technical Training Development and Delivery Linear Programming Operations Research WORK HISTORY: DigitalNet, June 2004 - Present: Senior Security Engineer - Complete Security NIST 800-26 assessment, System Security Plan (SSP) and System Test & Evaluation Plan (STEP) for DOJ TAX C&A process. Performed penetration testing and lockdown for Server 2003, Exchange 2000, SQL Server, Oracle 8i and 9i servers, and XP Workstations using SuperScan4, IIS database scanners, Nessus, Oracle and SQL scripts. Developed testing and lockdown procedures using Pedestal Security Expressions and STAT Scanner. Used Group Policies, Group Policy Management console and Microsoft Management Console to enforce security requirements. Created MS Access 2003 database tool to track and report all test results from the all server scans. KTK Consultants, June 1995 - Present: Metropolitan Washington Airport Authority (MWAA) Consultant Security Systems Engineer - Performed NIST C&A security assessment on badging system hardware, software, and network. Risk Analysis, SSP, ST&E, disaster recovery. Oracle server and database penetration testing and lockdown using IIS and Pedestal scanners. Designed the level 3 network to isolate the badging server and workstations from the production network. - Developed the requirements document for the procurement and implementation of a new ID badge production system and supporting network. The requirements included design and security specifications for hardware, software, and network, and many new interfaces to existing internal and external systems to automate the employee badging process. The secure interfaces included automatically obtaining SIDA training results, fingerprint tracking and adjudication, and ID verification into one homogeneous system. Airport Operations: Sr. Network Engineer / Sr. IT Support - Sys Mgr: Managed ID badging system which produces, encodes, and activates all the badges distributed at the airport, running in an Oracle 8i environment on a Windows NT 4 SP6 platform and interfacing to Softwarehouse C.Cure System. - Proj Mgr: Managed the relocation of the communications/computer room to new location, which included relocating the access control systems network, the MWAA backbone network, and secure badge network and servers. Upgraded all terminal premises hubs connectivity to backbone with no user interruption. - Redesigned the entire airport operations console layout and connectivity and managed the installation when the area went through a renovation. This involved the network communications, video surveillance, radio communications, weather and flight radar data. - During the events of Sept 11 2001 I coordinated and managed the installation network connectivity for additional workstations, IP phones, and cable TV connectivity to establish Airport Operations emergency response center at DCA. Entire installation was accomplished within 3 hours. Network Engineer / Architect - Designed and implemented upgrade to a 100 Mb redundant campus network using Cisco 5500 series switches. The design connected 13 LAN segments, 5 Novell servers, and 7 NT servers using, Cisco and Bay network Ethernet switches to the 100 Mb backbone. - Designed and implemented WAN frame relay to interconnect DCA, IAD, and Consolidated Functions (CF) in Alexandria. This was the first time that all three facilities were able to directly communicate. Developed and implemented the first IP network design for the Authority. - Planned and implemented the migration of six Novell 3.12 servers to Novell 4.1. Designed and implemented Novell NDS structure including all partitioning, replication and security. - Planned and implemented Internet connectivity including all security design of DMZ and installation configuration and management of Cisco PIX firewall. - Designed and implemented the corporate e-mail system using Novell's GroupWise 4.1a. Interconnected the existing WordPerfect Office 3.1 (WPO3.1), WPO 4.0a, VMSmail, and GroupWise into a homogeneous mail transport system. Planned and implemented the migration from their WPO3.1 environment to GroupWise 4.1a. Resulted in 10 fold Improvement in e-mail delivery and reliability. Project Manager / Developer - Manager / Developer: Managed four programmers in the development and implementation of Y2k Access 97 database for tracking all 180 embedded systems and 150 software systems across both airports. - Proj Mgr: Coordinated/Managed the activities of National Airport, Dulles Airport and Authority Headquarters in the Y2k transition period 12/31/1999 through 1/1/2000. This involved the schedule and shutdown and restart of over 50 servers, LAN switches and routers, leaving only essential communication running. - Proj Mgr: Managed team of Network technicians, IT support techs and server admins to design and implement the creation of three Y2k control centers. This included the installation of network connectivity, telecommunications, backup servers, auxiliary power, additional workstations, and security while keeping a low profile from the media - Sr. Developer: Developed a program that uses the "No Fly List" Excel spreadsheet, provided by the FAA and the database of badged employees to permute the name combinations. It takes into consideration multiple first and middle names, with Soundex and the various "initial" combinations. This program reduced the time for comparison from 3 days to 10 minutes. - Lead Designer/Developer: Designed and lead development team on the Equal Opportunities Contract Tracking System. This system replaced a 10 yr old legacy system on a DEC VAX/VMS system and migrated it to a MS Windows 2000/ Oracle 9i web based application. - Sr. Developer: Automated daily operations activity log. The log is an Excel document that lists all flight and street side activity for that day. Arrival and departure data from the flight tracks service is imported into a spreadsheet database. Hourly and summary statistics, charts, and cross tables are produced by pressing one button. This reduced the production of this report from 6 hours to 10 seconds. - Project Mgr / Developer: Designed, coded, and implemented an interface between MWAA's ID badging system and the point-of-sale system (Agent Cashier - ACM). Established effective interface between the badge SQL server application (WinBadge) and the Oracle ACM so that information entered into WinBadge concerning the employee, company, job, and items purchased is transformed and passed to ACM. This was accomplished by using the SQL server's DTS service to pass the data to two staging tables in the Oracle database and a trigger table that prompts the Oracle package to disperse the data to the appropriate tables in the ACM database. The project involved replicating the production environment of a SQL server and Oracle 8.1.7 server on Windows 2000 platforms. In addition, designed and implemented the development LAN and temporary location for the servers. - Project Mgr / Developer: Completed the programming, testing, and implementation of MWAA's Taxi Badging and Check Writing System. This system combined two previously stand-alone Paradox systems into one Oracle 8i database that prints photo IDs and voucher checks for the cab drivers at DCA. The project involved data conversion, Oracle Forms, PL/SQL development, and interfaces to Bottomline's PayBase database, digital camera and photo printer. - Developer: Created a new HR Access database system for the Public Safety Division. This tracks all police personnel data and their history of assignments and ranks, bonuses, evaluations, awards, training, and physicals. This system combined six separate spreadsheets from several individual users into a homogeneous multi-user system and included the development of numerous statistical reports on the demographics of the department. - Proj Mgr / Lead Developer: Disadvantaged Business Enterprise (DBE) and Local Disadvantaged Business Enterprise (LDBE) certification database. Analyzed, developed, programmed, and implemented the Access 97 database for the Equal Opportunities Department to track a firm's applications for certification. The database tracked the applications through the entire certification process including the electronic transfer of ownership of a firm's record to the next responsible evaluator in the evaluation and paper file tracking. - Project Mgr / Developer: Developed and implemented a program to automate the creation of the annual Business Opportunity Seminar Directory publication. The program takes data directly from the L/DBE database, and automatically formats the contents, creates the table of contents for each of the five sections and a complete firm index for the entire document. Produces a photo ready copy to send to the printer for production. This reduced the production time from 2 weeks to 30 minutes. I-NET Inc., Apr. 1993 - June 1995, Senior Network Engineer and Technical Proposal Writer - Senior network engineer for Pennsylvania Power and Light's LAN/WAN infrastructure rebuild. The corporate network consisted of five buildings in Allentown, PA on a Wellfleet BLN/BCN FDDI backbone connecting 46 communications closets with Ethernet and token ring using SynOptics 5000 series hubs. The WAN connected the 12 fossil plants via dual 56k circuits and the Susquehanna Nuclear Facility via T1 and T3. The WAN supported existing Token Ring connectivity via Novell SAA and Attachmate Gateways to the corporate IBM 3090 via Source Rout Bridging and LLC2 Data Link Switching through the IP backbone. - Senior network engineer for the Tennessee Valley Authority's (TVA) LAN/WAN redesign. The WAN connected 53 sites across a seven-state region. The eight nuclear facilities and the corporate center in Chattanooga and Knoxville each had a FDDI ring interconnected by Cisco routers and T1 circuits. The main Chattanooga complex consisted of 15 buildings and 150 communications closets each supporting Cabletron token ring and Ethernet to the FDDI backbone. Project also included the integration of the e-mail systems (PROFS, All-in-1, Oracle Mail and cc:Mail) into one system with common directory and distribution lists and directory synchronization. - Project Manager for Sallie Mae. The Electronic mail integration effort included the integration of four diverse e-mail systems (cc:Mail, MS Mail, Emc2 TAO and All-in-1) into one mail transport mechanism utilizing the control data mail hub. The project included a detailed study of the market leaders based on the requirements for connectivity, proposal evaluations of leading vendors, design and implementation of the selected product. Other projects included a study of frame relay carrier services; Electronic mail carriers (MCI, CompuServ, Easy Link, etc.), TCP to SNA gateways, Internet connectivity and firewall protection. - Served on several proposal teams providing technical writing for proposals including the winning $300 million NASA PRISMS contract and the $60 million USPS Router and Hub Procurement contract. - Managed the design and implementation of a large ATM network at Fort Bragg, NC. The design included 600 buildings in a collapsed star ATM backbone using Fore and New Bridge ATM switches and Cisco routers. The backup network consisted of a dual homed FDDI ring interconnecting the Cisco routers and the ODS Infinity Hubs. Also delivered numerous presentations on ATM and FDDI and instructed FDDI courses for clients. Boeing Computer Support Services, Apr. 1990 - Apr 1993, Lead Engineer - Managed teams of up to 25 engineers and technicians on special technical management information systems (TMIS) projects, and the daily activities of four engineers and two operations personnel to assist Space Station Freedom Program Office (SSFPO) in development of network engineering and operations requirements and goals. Translated requirements into designs, full life cycle schedules, priority assignments, and budgets. Presented plans, designs, and final results to SSFPO and Boeing senior management. Responded to daily network operations needs and requirements of SSFPO's NASAnet, NPSS, 52 LAN segments, 100 circuits, VAX & IBM connectivity, print servers and 1,200 workstations. Developed strategy adopted by NASA for the management of all SSFPO LAN segments and network devices. - Designed and managed the implementation and deployment of Simple Network Management Protocol (SNMP) on all SSFPO LANs and manageable devices. - Implemented the TMIS Network Management Center (NMC) using Ungerman Bass Asscess-1 management and SynOptics Optima hub management on a DOS and Windows platform. Worked with Program Support Carrier Network (PSCN) and other TMIS engineers to trace and diagnose many problems on the WAN involving TCP/IP and DECnet. Analyzed a File Transfer Protocol (FTP) problem due to a configuration error on the router, which resulted in tighter configuration management on the entire WAN and virtually eliminating down time due to configuration management errors. Various Firms, June 1979 - Apr. 1990, Lead Engineer and Independent Contractor - Designed and installed one of the first Ethernets in Southeastern Virginia (Tidewater area) using Xerox equipment, XNS protocol and 10base5 Ethernet. - Interfaced PCs to chemical production equipment to automatically collect data and do complex engineering calculations. EDUCATION: PhD physical chemistry, University of Rochester, Rochester, NY MS physical chemistry, University of Rochester, Rochester, NY BS chemistry; second major physics, minor mathematics, University of Texas at El Paso, El Paso, TX PUBLICATION: Enhancement of Airport ID Security Badge Environment GSEC/GIAC Practical Requirement http://www.giac.org/practical/GSEC/Kenneth_Mack_GSEC.pdf CONTINUING EDUCATION: SANs Institute Global Information Assurance Certification (GIAC) Security Essentials Certification (GSEC) #3586 CISSP Certification - expected Dec 04 Oracle PL/SQL 2001 Adv PL/SQL 2001 Oracle Forms and Reports 2003 Oracle System Administration 2003 Oracle database Tuning 2003 SQL Server Transaction SQL 2003 SQL Server DB Administration 2003 Data Modeling and Database Design 2003, 1993 Visual Basic 2001 Cisco Router Configuration 1998 Cisco Network Essentials 1999 LAN Switching and Cisco Catalyst Switches 1998 Studying for CCNA SNMP course from Jeffery Case 1993 TCP/IP course from D. Comer 1992 Frame Relay, X.25 1993 T1 Digital Networking 1994 University of Richmond Mgmt Training 1985 Boeing Project Mgmt Training Program 1990