Ben Buchacher

425-341-3267 | [email protected]

Experience:

Concur Technologies | www.concur.com Security Engineer II, 2013 - 2014

  • Architected and implemented a 50 node real time threat intelligence/alerting system indexing around 10 billion events a month, sources included Suricata, Kippo, Corporate VPN, OpenDNS, Akamai, Twitter and our customers web application logins. Cluster Technologies utilized were Elastic Search as well as python Disco map/reduce.

  • Designed and Implemented an automatic custom dynamic web application vulnerability scanner fully integrated with our JIRA instance with its scope including, XSS, SQL Injection, Remote File Inclusion, and Local File Inclusion. Front end was PHP based with a MYSQL and Python backend. Reporting was done through the Web UI as well as outputting crawl results and vulnerability findings to Elastic Search.

  • Lead tech resource on company wide identity management implementation project interacting with over 75 different applications and sources.

  • Lead internal pentesting resource, scope included: Webapps , Android/IOS/Windows mobile applications and vendor products. Integrated an open-source honeypot with big data technologies to retain and analyze malware installation attempts, as well as provide intelligence to whether we were being directly targeted or was automatic scanning.

  • Utilized advanced scripting knowledge to build out logic oriented deployment scripts, data parsing scripts, monitoring scripts and, infrastructure management scripts.

  • Reverse engineered web applications and API's to be consumed into ElasticSearch or Splunk.

  • Provided security consultation regarding desig`n, implementation and debugging for many internal procedures and internal applications.

Concur Technologies | www.concur.com Software Configuration Engineer II, 2012 - 2013

  • Provided Security consultation and direction for many internal procedures and internal applications.

  • Configured Analytics Tools and watchpoints to ensure better monitoring.

  • Provided Training and Technical direction to internal team members.

  • Utilized Advanced scripting knowlede to build out logic oriented deployment scripts.

  • Managed all debugging, patching, and performance tunning for for the Expense Production Servers and services across multiple datacenters.

Palador Inc. | www.palador.com Sr Systems Engineer, 2011 - 2013

  • Provided consultation and technical direction on multiple network, software, and systems projects both internally and for clients.

  • Performed security assessments of software and systems configuration as well as guidance on security best practices.

  • Managed day to day operations of multiple clustered virtual environments of >300 VMs.

  • Utilized advanced scripting knowledge to automate day to day administration and provisioning tasks

  • Evaluated, advised, and implemented client's annual Technology budgets.

Seattle Business Networking Systems & Consulting | www.sbnsc.net Owner, 2011 -Current

  • Designed, planned, and implemented various open source technologies to provide virtual private servers, domain names, and hosting solutions including billing and automatic provisioning systems.

  • Performed web application security assessments, network penetration tests and data analysis.

  • Mitigated existing problematic networks including full disaster recovery into a stable productive infrastructure.

  • Designed, hosted, and managed various client networks and services on a wide variety of platforms.

  • Provided web design services including graphics and underlying markup.

Mercer Island Presbyterian Church | www.mipc.org Network Systems Admin, 2008-2011

  • Planned, deployed and managed production environment including Active Directory, backup systems, Exchange, MS SQL Server, and network topology.

  • Secured vulnerable network configuration, resulting in elimination of recurrent fraud issues.

  • Implemented virtualization based infrastructure, resulting in improved efficiency of existing hardware and cost savings.


Skills:

  • Pentesting experience with web applications, multi platform mobile applications, web API's, and vendor products.

  • REST / SOAP reverse engineering.

  • Custom web application and database design for internal tools. Graphical and daemons.

  • Developing better monitoring practices and reporting using Splunk, Elasticsearch, and python.

  • Scripting experience including advanced knowledge of Python, Bash and PowerShell; intermediate knowledge of Perl, Ruby, and PHP; basic knowledge of C and C++.

  • Configuration/Hardening, and Administration of Linux (and other Unix-like) operating systems such as Arch, CentOS, Debian, FreeBSD, RedHat, and Ubuntu. Advanced knowledge of Linux security vulnerabilities, post exploitation techniques, and appropriate hardening and mitigation measures.

  • Linux (and other Unix-like) applications and services such as Apache, GIT, NGINX, PHP, RSYNC, SSH, FTP, SVN and VNC. Knowledge of GCC and the ability to compile custom kernels and packages, both for Linux and for Android.

  • Configuration/Hardening, and Administration of Windows client (XP,7,8) and server (Server 2003, Server 2008, and Server 2008 R2, Server 2012) operating systems. Advanced knowledge of Windows security vulnerabilities, post exploitation techniques, and appropriate hardening and mitigation measures.

  • Microsoft enterprise level applications and services such as Active Directory, DFS, DHCP, DNS, Failover Cluster, Group Policy, Print Services, Remote Desktop Services (RDSH and VDI), and RRAS.

  • Virtualization platforms including ESXi, Hyper-V, KVM, OpenVZ, and Xen. Clustered configurations using Hyper-V, VMware, and KVM.

  • Experience with GitHub source control and the Android Open Source Project. Strong advocate for open source software and very active within the community.

  • Network infrastructure including cabling, firewalls (Cisco, F5 Big IP, IPTables, Microsoft TMG/UAG, and Untangled), routing, switching, and VLANs. Networking best practices, security and web application security. Understanding of the OSI model and its value in network troubleshooting.


Education:

  • Bellevue Community College (Currently Unfinished - Bachelors of Computer Sciences)