Resume
Thomas G. Regner

36156 Potel Common

Fremont, CA 94536
H: (510) 792-0993  C: (510) 402-3608

TGRegner@comcast.net

 

OBJECTIVE

To contribute significantly to the network and systems security of an established enterprise, and contribute to the systems information development process.


RECENT CERTIFICATIONS & EDUCATION

·         University of California at Santa Cruz
Certificate in Systems and Network Security                                                                                 2010

·         Certified Information Systems Security Professional
CISSP exam passed / completed                                                                                                2011


Recent experience includes:

·         IT security and compliance and process documentation (Common Criteria, SOX, PCI, etc.)

·         Independent consultant producing procedural operations runbooks for major enterprises.

·         Supervising team creating network equipment and network security management software customer documentation for end users, OEMs and technical staff

·         Software and hardware technical documentation

·         Enterprise-wide Wiki and Knowledge Base documentation

 

WORK HISTORY

2010 (Present) ArcSight (an HP Company), Cupertino, CA
Sr. Technical Writer – Common Criteria

Create and submit documentation to meet Common Criteria v3.1 Evaluation Assurance Level (EAL) 3. Based on the Security Target for the Target of Evaluation (TOE); write, edit and submit detailed Development, Guidance, and Life-Cycle Support documentation that supports the Security Target and meets the stringent guidelines for achieving a Certificate of Common Criteria under NIAC.

2008 – 2010 Self-Employed, Medical, Financial, Data/Information Security Consultant
Clients Include:

·         Blue Shield of California (Operations, Network Security, Database Security), San Francisco, CA

·         SunGard (Financial Systems, Business Continuity, Disaster Recovery), San Mateo, CA

·         Electronic Arts (Operations runbooks, SOX compliance), Redwood City, CA

·         BigFix, an IBM Company (Decision Support System/Software Asset Management) , Emeryville, CA

·         Kodak Imaging Network (Network security policies to meet SOX/PCI), Emeryville, CA

·         Stanford University IT Department (Disaster Recovery), Palo Alto, CA

·         McAfee Corporation (Disaster recovery for online security software sales), Santa Clara, CA


2005 — 2008   Avocent Corporation (formerly Cyclades) Fremont, CA
Technical Publications Supervisor

Supervised department of technical writers. Responsible for delivering customer documentation for all Cyclades-branded, Linux-based, security-focused network “out of band” appliance products, and for OEM customers.

2003 – 2005 Self-Employed, Medical, Financial, Data/Information Security Consultant
Clients Include:

·         Kodak Imaging Network (Network security policies to meet SOX/PCI), Emeryville, CA

·         Boston Scientific (Medical ultrasound), Fremont, CA

·         GAP Inc. (SOX-compliance processes for GAP IT Security. Supervised others.)

·         Robert Half International (Created all corporate SOX compliance policies.)

 

1998 – 2003 Network Equipment Technologies, Inc., Fremont, CA
Department Manager, Information Development / Technical Publications

Managed Information Development / Tech Pubs department and wrote manuals for network administrators using N.E.T. multi-platform access equipment used by Dept. of Defense, among others.

 

Other Clients and Employers 

·         Xerox Corporation (Versatec, XES, ColorGrafX, LiveWorks)

·         Unirad/Technicare  (Medical Ultrasound equipment)

·         Siemens Gammasonics (Medical Ultrasound equipment)

·         NASA (Telecommunications branch, Code 951, traveled to 36 countries)

·         Public Service Satellite Consortium, (Satellite communications)

 

MEMBERSHIPS and AFFILIATIONS

·         Senior member, Society for Technical Communicators (STC)

·         Member, Information Systems Security Association (ISSA), Silicon Valley Chapter

SKILLS

Security, Compliance and Regulatory:  Passed CISSP Exam. Experience with multiple platforms, IDS, IPS, event log analysis, perimeter security, database controls, access control regimen, firewall policies. Compliance documentation and policies for Common Criteria EAL3, ISO, Sarbanes-Oxley (SOX), FIPS, Payment Card Industry (PCI), HIPAA and COBIT standards. Documentation for UL, FCC, FDA and international safety standards agencies.

Management Skills:  Have managed and supervised small and medium-sized departments for Cyclades, Avocent, Network Equipment Technologies and Versatec (Xerox).

Writing and Illustration:  Ability to convey highly technical and abstract concepts both in writing and with high-quality illustrations.