| Contact Information | |
| Name: | Robert Frazier |
| Email: | belka (at) att (dot) net [email concealed] |
| Location: | Abilene, Texas, United States |
| Resume | |
| Position/Title: | Chief Security Strategist |
| Resume: |
Robert P. Frazier, CISSP 2133 Woodridge (325) 695-7238 Abilene, TX 79605-5551 belka (at) att (dot) net [email concealed] Summary I am an experienced generalist seeking a challenging position in IT security and operations that requires creative thinking, problem solving and a mix of business acumen and technical imagineering. I have successfully met challenges in high-tech positions for over twenty-five years in diverse environments around the world. I am deeply experienced in areas such as security, banking, manufacturing, academic, wireless, telecommunications, military, and government; in roles ranging in responsibility from operations manager to developer to consultant to Chief Information Officer. I led successful teams in a rich variety of environments in security, forensics, litigation support, security engineering and architecture, and software development. I bring splendid synergy of talent and skill, of technical expertise and leadership backed by demonstrated problem solving skills. I easily met technical challenges one moment and business or people challenges the next. I am an excellent communicator, presenter, and frequent industry speaker, fluent in German, Russian; working knowledge of French; survival level Spanish, Arabic and Japanese. Eight years first hand international and diplomatic experience living in central Europe and Middle East/Arabian Gulf. I have extensive international and operations experience in Europe, Asia, and the Middle East, working in global environments as diverse as India, China, and Japan and Latin America. I have an active TS/SCI clearance and am willing to travel up to 80% or more. Experience • Management Experience o CIO McMurry University – managed the transformation of the campus into a networked and wired university. Transformation shown as a model in industry journals, and set up to be self funding. Oversaw operations and budgets to support 1500 students and faculty. o IBM Cobell v Norton Litigation Team – managed a team of security engineers providing litigation support in high profile court case, submitting regular briefs to the court on security issues. Managed court discovery operations in 28 states. o US Department of State - managed world wide IT security operations as first System Security Officer for State. Had responsibility and budget oversight for security and forensics research facility as well as oversight for computer security programs globally. o Rafha and Artiwiyah Refugee Camps - responsible for the oversight, management, and staff of two refugee camps housing 54,000 Iraqis in Saudi Arabia following Gulf War. Responsible for welfare over sight, international agencies and NGOs. Directly responsible for political-military actions involving refugees. o Consulate General Frankfurt - Managed the deployment of machine readable passports at the largest US Consulate General. Provided crisis leadership during massive demonstrations and terror incidents during Gulf War. Managed German national staff of 22. o Intelligence Operations - commanded Security Operation Company of 55 soldiers tasked with real time missions. Cited for effective operations during a number of crisis where timely intelligence was key to US decision makers. o IT Operations Management – managed night computer operations at Texas A&M University and Drawing Board, managing operations staffs and remote computing delivery centers. • Business Operations Experience o Mergers and Acquisitions - Key change agent for operations integration for sales and delivery for IBM for the Internet Security Systems acquisition. Led the efforts for customer integration into IBM ISS delivery, worked through security architecture and technical design issues, personnel realignment, revenue financials and P/L, regional legal and work law issues, and integration between two work cultures. Led the integration efforts to set up international operations between business units in North America, Europe and Middle East, Asia Pacific, Australia and Latin America. o Industry Start-Ups and Buy-Outs– led the security practice of a dot.com through rapid growth to 186 employees, successful operations and then through down turn and decline. Help keep business afloat to broker buyout, salvaging the intellectual capital and some jobs. o Industry Board Member – serve as the IBM representative on the Board of Directors of the Continental Automated Buildings Association (CABA), an industry board charged with setting standards and innovating in the field of smart building technology. My role was for security issues surrounding new building management technology and setting standards and practices to ensure safe and logically secure operation of automated buildings. o Strategic Outsourcing – designed and implemented the security on several successful multi-year outsource projects which included services managed by the customer or managed security services operated by the outsource provider. Principle security architect on deals ranging from $10 million all the way to $1 billion or more. o Security Delivery and Compliance -- Worked in various computer security positions including Chief Security Officer for a defense contractor program, System security Engineer for the US Department of State, and as an Army intelligence officer working for INSCOM. Experienced in compliance with security regulations, ISO 17799, OMB A-130, NIST 800-14, DCID 6-3, FISMA, SOX, HIPPA, California HB 1386, PCI, and FDA regulations. Familiar with US, European and Asia Pacific privacy laws and compliance issues. o Security Consulting -- Lead Security Consultant on numerous engagements in the US, Europe, Asia, and Middle East, taking lead role in customer relationships and technical matters, for service delivery and reporting. Engagements included network architecture, ISP design and business planning, security design and review for a large travel industry customers, security implementation for a nationwide wireless network, telephone and data network integration for a merger between two international phone companies, security architecture and design for a major brokerage firms, banks, and insurance companies, and penetration testing of multinational banks. o Technical Presales – led team of executive sales engineers charged with partnering with customers to help define security solutions that then could be sold and delivered. Combining technical and consulting background and using a security model I invented, this team became to focal for developing new business in complex IT environments, especially in large enterprises. Work History • IBM Internet Security Systems – 2006 – present, Global Security Integration manager for Internet Security Systems • IBM Global Technology Services – 2003 – 2006, Security Solution Manager • IBM Federal Strategic Consulting – 2002 – 2003, Executive Consultant and Security Competency Lead • Concept Five Technologies/Hitachi – 2000 – 2001, Security Practice Lead and Chief Architect • IBM Global Services – 2000, Senior IT Security Architect. • BBN/GTE Technology Organization - 1998 to 2000. Lead Security Consultant • McMurry University - 1996 - 1998 Chief Information Officer. • US Department of State – 1988 – 1996. o 1995 -1996, Chief Systems Security Engineer o 1994 - 1995 Nuclear Risk Reduction Center o 1991 - 1994 Political Officer, US Embassy Riyadh, Saudi Arabia o 1989 – 1991 Vice-consul, American Consulate General, Frankfurt o 1988. - Appointed to diplomatic service during the Reagan administration • General Dynamics - 1987 - 1988. Chief of Computer Security, A-12 project • Captain, US Army - 1984 - 1987. Intelligence Security command (INSCOM) • Texas A & M University - 1981 - 1984. Night Operations Supervisor Major Accomplishments • IBM, 2006, - Bravo Award for security architecture design methodology • IBM, 2005, - Service Excellence Award for leading disaster response team into New Orleans and Lake Charles after Hurricanes Katrina and Rita • IBM, 2004 – Bravo Award for security architecture for government agency • IBM, 2003 – Bravo Award for security architecture that clinched $600 million outsource deal • IBM, 2002 – Litigation support for Cobell v. Norton, largest class action suit in US history • Concept Five Technologies, 2001 – CORBA Security Architecture design and implementation for bank and telco • IBM Global Services, 2000 – PKI and Digital Certificates Implementation • GTE/BBN, 1999 – Wireless network rescue and implementation • McMurry University, 1998 – Resale of telecom/internet services to students • McMurry University, 1997 – Design and implementation of collapsed voice and data network running over ATM network • US Department of State, 1996 – Risk Analysis of unclassified networks, security architecture for SIPRNet • Superior Honor Award, 1995– START Treaty implementation in NRRC • Superior Honor Award, 1993 – Successful multilateral negotiations for Iraqi refugees • Meritorious Honor Award, 1991. – State Department Gulf War Service • General Dynamics, 1989. – A-12 security architecture cost savings • Army Commendation Medal, 1987. Intelligence collection redesign Education • BA, Texas A & M University, 1983. European History. • BA, Texas A & M University, 1983. German, French. • Foreign Service Institute, 1989. Intensive German. • Foreign Service Institute, 1993. Intensive Russian. Professional Certifications • CISSP, 2004 • ISSAP, 2005 Certificates • University of Texas at Arlington, 2001. UNIX Programming • University of Texas at Arlington, 2001. UNIX System Administration • University of Texas at Arlington, 2001. Web Applications Programming • University of Texas at Arlington, 2001. Windows Programming Specific Technical Background • Penetration Testing – experienced in penetrating and testing applications and networks for security flaws, buffer over flows, input errors, etc. Conducted penetration tests against banks/financial services, and US Government customers, using commercial and public domain tools. Can use and modify shell script tools, Perl, C/C++ as necessary. • Applications Security -- Familiar with application server security for Weblogic, Websphere, iPlanet, and third party products such as SiteMinder and ClearTrust. Experienced with Hitachi HSS CORBA Security product. Experienced with testing applications for security flaws. • Litigation Support – led a team of security consultants in support of the Special Master in the case of Cobell v. Norton, the largest class Action suit in US history, involving the Department Interior and the Bureau of Indian Affairs. Provided security assessment reports to the court allowing the Department of Interior to reconnect to the Internet • Forensics -- Experienced in seizure of equipment and retrieval of data, analysis of compromised systems, and working with law enforcement agencies, evidence protection and recovery from hacker attacks. Maintain contacts in the computer underground, both in the US and Europe. • Networking -- Technically proficient with Unix and Windows environment, MLPS and FDII back bones. As CIO, designed and managed mixed enterprise system, which included switch voice, data, and video over ATM fiber backbone, and routed TCP/IP and IPX, e-mail and internet services. Familiar with router engineering and configuration, including OSPF, BG, and ACL security. • Identity Management – Experienced with Tivoli ITIM and ITAM, MS Active Directory, LDAP, and other identity management solutions from SUN and CA. Experienced with integration issues with LDAP, and Application servers such as Websphere, WebLogic, and Netegrity. • Wireless – Experienced in wireless telephone and pager network security, two-way paging, wireless LANS and campus networks security. Engagements include clients with nation-wide wireless networks. Experienced in security integration between the wireless and wired portions of networks. Technically proficient in 802.11 network deployment and security. • Firewalls and Intrusion Detection and Prevention – Experienced in designing and implementing firewall and IDS architectures, particularly using PIX and Checkpoint firewalls and Cisco, ISS, and Snort IDS. Experienced in writing firewall rules and IDS signatures. • PKI -- designed the architecture for major PKI implementations, cryptography, VPNs, and certificate authorities. Experienced with high availability implementation of PKI, including multiple certificate authorities, (CA) LDAP directory services, and hardware tokens for certificates using Entrust PKI. • Telephony -- wrote RFP and designed the architecture for collapsed voice and data network. As CIO, supervised project to rewire 40-acre campus with 17 buildings for voice, data, and video over same fiber network, integrate voice mail and data applications, remote access, and teleconferencing for 1500 users using Mitel NeVaDa distributed PBX product. Supervised and participated in programming PBX, call accounting, long-distance resale billing program, voice mail setup, and 911 integration and database administration. . Technical Hands-on skill using Perl, shell scripting, CGI, HTML, Java script, ASP, PHP, C, C++, Visual Basic, Visual C++, Java, EJB, CORBA, XML, COM/COM++, VBA for MS Access, data base design, Oracle, MySQL, Solaris 2.X, Win 98/ME/NT/2K/XP, Linux, Novell 4.2, OpenVMS, Cisco IOS 12.5, TCP/IP and 802.11 networks, security tools and scanners, HIDS, NIPS, AV, malware tools. |