Bryan Horstmann-Allen is a UNIX Systems Administrator with over a decade of
industry experience. He has completely rebuilt the infrastructure of several ...
!! ! !
BRYAN HORSTMANN-ALLEN
address 440 Lombard St Philadelphia, PA 19147
tel 215.910.0521 email
[email protected] url http://mirrorshades.net
Bryan Horstmann-Allen is a UNIX Systems Administrator and manager with over a decade of industry experience. He has completely rebuilt the infrastructure of several companies, and has expertise in automation, configuration management and streamlining processes. EXPERIENCE
SITE RELIABILITY ENGINEER, SOURCEFIRE, INC/CISCO SYSTEMS; COLUMBIA, MD — FEB 2011 - CURRENT Anti-malware/Network Security
‣ Led a seven-person ops/dev team building both ops tooling and product ‣ Interfaced very successfully with the Engineering and QA teams ‣ Prototyped VM appliance of FireAMP SaaS product ‣ Managed AWS EC2 infrastructure of 600 instances ‣ Small-scale datacenter build-out for private/hybrid cloud (4 dozen systems) ‣ Built highly-available infrastructure: multi-cloud/hybrid tenancy as Sourcefire’s Director of Datacenter Ops ‣ Marketed and executed Chef-driven cross-platform infrastructure and service management ‣ Worked with Cisco integration team after Sourcefire was acquired in 2013
!
SYSTEMS ADMINISTRATOR, IC GROUP, INC; PHILADELPHIA, PA — JUL 2006 - MAY 2010 Email Services (Pobox.com, Listbox.com)
‣ Re-architected entire systems infrastructure over the course of two years ‣ Consolidated 50+ Debian GNU/Linux boxes to twelve Solaris 10 systems ‣ Integrated configuration change management into all aspects of the infrastructure ‣ Managed email deliverability concerns and IP reputation ‣ Specified, contracted, and migrated new datacenters NETWORK SECURITY ANALYST, DREXEL UNIVERSITY, PHILADELPHIA, PA — FEB 2005 - JULY 2006 Education/University level
‣ Enforced Security policy (One of two dedicated security people for 10,000+ user-base)
‣ Identified malicious or abnormal network behavior
‣ Performed forensics on compromised systems
‣ Re-factored network management system using modern Perl and database best practices
‣ Interfaced with students, faculty, staff and outside agencies SYSTEMS ADMINISTRATOR, DIGITAL COLOR IMAGE, PENNSAUKEN, NJ — JUN 2001 - FEB 2005 Printing, Pre-Press, Digital Asset Management
‣ Re-built legacy company networks
‣ Managed 40+ UNIX systems
‣ Directed technical roadmap, and made majority of technical decisions solo
‣ Maintained legacy SCO UNIX (3.x), IRIX, AIX servers
‣ Supported Mac OS 9 and Mac OS X workstations SYSTEMS ADMINISTRATOR, CISCO, PHOENIX, AZ — SEP 2000 - MAR 2001 Cisco Press, Content Development/Workflow
‣ Built development network from ground up
‣ Managed a dozen Debian GNU/Linux systems
‣ Self-directed position with minimal oversight; set in-house priorities NETWORK ADMINISTRATOR, YUMA EDUCATIONAL CONSORTIUM, YUMA, AZ — AUG 1999 - AUG 2000 Education/High School level
‣ Managed 24 Debian GNU/Linux fileservers serving Samba to 2,500+ users
‣ Built Windows workstation images for several different classes of user
‣ Worked at all levels of network support
!! SKILLS
Systems Administration ‣ Unix: Solaris, Linux, OpenBSD, FreeBSD, NetBSD, Mac OS X ‣ AWS, Joyent SmartDatacenter
!
Systems Automation ‣ Puppet, Chef
‣ Jumpstart/JET/Automated Installer, FAI, Cobbler
!
Network Administration ‣ Design and implementation
‣ Ethernet topology and cabling
‣ Failover (heartbeat, CARP, pfsync)
‣ Layer 4 switches
‣ Hardware routers
‣ Free UNIX NAT/routing implementations
Services Administration ‣ Email
• Postfix, Sendmail, Exim
• Dovecot, Cyrus, Courier, UW-IMAP
• CloudMark, SpamAssassin, Amavis, SASL/TLS ‣ Web
• Apache, lighttpd, nginx, Sun Webstack, Squid ‣ DNS
• djbdns, BIND ‣ Databases • PostgreSQL, MySQL, sqlite, Membase, Riak, MongoDB, CouchDB ‣ File sharing
• Samba, netatalk, AFP, NFS, CIFS, DAV ‣ Version control
• Git, Subversion, CVS ‣ Backups/Redundancy
• rsync, NetBackup, Bacula, boxbackup, rdiff, imapsync
• ZFS, LVM, RAID ‣ Monitoring
• Nagios, Munin, Mon, Resmon, Circonus
!
Security ‣ Host firewalling
• pf, ipf, iptables, ipchains ‣ System hardening
• systrace, selinux, grsec, RBAC ‣ Intrusion detection/prevention • Snort, BART, AIDE
Software Development
‣ System scripting • Perl, Python, Shell, Ruby
‣ Web • Perl, PHP, Python, Ruby
‣ ORM • DBI, Class::DBI, DBIx::Class