Resume

Mike Mackintosh

mike@titanosx.com  |   Cell: 973.464.9026    |  Twitter: @mikemackintosh 
Belle Mead, NJ     | Web: mikemackintosh.com |   GitHub: mikemackintosh

Skills

• Incident Response and System Hardening on Mac OS X, CentOS and Ubuntu/Debian
• Experience coding and developing in Ruby, Python and PHP
• Several years of daily experience with nginx and Apache
• Reverse engineering malware and debugging segfaults
• Experience with OpenSSL both in the CLI and Ruby
• Creating bytecode iptables rules

Experience

Shutterstock - New York, New York - World Leading Stock Content Provider
09/2013 - present, Security Engineering Lead

• Responsible for the creation and growth of the security team as a whole by managing, facilitating and prioritizing all aspects of security including application, systems, networking, information and corporate as well as physical office security for all company locations
• Assess security posture of all Shutterstock brands including Shutterstock, Offset, WebDam, Skillfeed, BigStockPhoto, Rex and Premium Beat
• Continually work with new security vendors to improve security profile of the company
• Lead incident response from intrusion detection to patching for situations like Heartbleed, Shellshock, Ghost and SChannel vulnerabilities
• Design and deploy DDoS-mitigation using both on and off-premise devices and upstream scrubbing networks
• Routine monitoring and improvements with regard to the public reputation of all Shutterstock brands, including DNS and IP space
• Design and implement 2-factor authentication for corporate VPN systems
• Create and enforce work-flows and policies for new vendor profiling and on-boarding
• Establish and maintain Firewall Policies and approve policy modifications
• Explore new methods to create a defensive infrastructure with offensive tactics
• Architect, code and deploy self-defense system which helps defend against brute-force and dictionary attacks against customer and employee accounts
• Investigate and identify compromised employee and customer accounts
• Complete quarterly PCI scans, annual self-assessment questionnaires, and serve as key member in SOX compliance
• Run public responsible disclosure and internal bug bounty programs
• Provide AppSec training to developers and QA test engineers
• Spearhead anti-virus and configuration management roll-outs for organization
• Improve security posture of sites and services by enhancing utilities like Puppet and Chef
• Provide professional and technical mentoring to teams and individuals
• Oversee the design and deployment of closed-circuit security camera systems
• Work with landlords to ensure data center standards compliance

Verizon Wireless - Branchburg, New Jersey - Telecommunications
05/2012 - 09/2013, Principle Engineer, Security Engineering
05/2011 - 05/2012, Member of Technical Staff, Security Engineering

• Manage Network Management Systems and define KPI's
• Serve on customer advisory board for NMS tools
• Coded and maintained security dashboard which included configuration management, inventory and auditing
• Create and manage standards for auditing and compliance
• Provide deterministic results from performance testing
• Trial and configure prospective vendor equipment
• Architect and enforce configuration best practices amongst the team
• Expand and enhance monitoring and alerting
• Serve as key technical resource and subject matter expert
• Collect and archive daily element configurations
• Detect and respond to network incidents
• Design, test and publish Methods of Procedures

05/2008 - 05/2011, Technician-Switch, Network Repair

• Support mission critical networks for large enterprise customers
• Pioneer support for LTE
• Work closely with upper-management and executives on escalations and incident response
• Help improve customer experience by improving network design and configurations
• Troubleshoot routing, switching and firewall mis-configuration and outages
• Author department training materials and develop curriculum for formalized training classes
• Created and maintained department website which included a knowledge base, wiki, data-mining and ticket automation
• Participate and drive several large, multi-year projects with many teams and vendors

Noteworthy Side Projects

TitanOSX - https://github.com/TitanOSX/titan
TitanOSX was inspired by the Etsy MIDAS project, but after an almost complete refactoring, I added client transparency. By this, there is a client utility which can be accessed to manage the tool, included monitors, and self-destructing reports. I also created a RESTful interface for online, remote reporting.

Masterbaker - https://github.com/mikemackintosh/masterbaker
Masterbaker was ported from Soloist, one of the simplest ways to manage workstations using Chef. The large improvement of Masterbaker allows organizations to manage both company-wide and user-level run lists independently to give better control over configurations.

ruby-ipaddress https://github.com/bluemonk/ipaddress
I've submitted several pull-requests which have been pulled into master which add support for unsigned 32-bit IP address parsing and IPv4#to_h methods. After showing interest in this project, I became a co-maintainer of it to help it grow.