Resume
Thomas G. Regner
36156 Potel Common
Fremont, CA 94536
H: (510) 792-0993 C: (510) 402-3608
OBJECTIVE
To contribute significantly to the network and systems security of an established enterprise, and contribute to the systems information development process.
RECENT CERTIFICATIONS & EDUCATION
·
Certificate in Systems and Network Security 2010
·
Certified Information Systems Security
Professional
CISSP exam passed / completed 2011
Recent experience includes:
· IT security and compliance and process documentation (Common Criteria, SOX, PCI, etc.)
·
Independent
consultant producing procedural operations runbooks for major enterprises.
·
Supervising team
creating network equipment and network security management software customer
documentation for end users, OEMs and technical staff
·
Software and
hardware technical documentation
·
Enterprise-wide
Wiki and Knowledge Base documentation
WORK HISTORY
2010 (Present) ArcSight (an HP Company),
Sr. Technical Writer Common Criteria
Create and submit documentation to meet Common
Criteria v3.1 Evaluation Assurance Level (EAL) 3. Based on the Security Target
for the Target of Evaluation (TOE); write, edit and submit detailed
Development, Guidance, and Life-Cycle Support documentation that supports the
Security Target and meets the stringent guidelines for achieving a Certificate
of Common Criteria under NIAC.
2008 2010 Self-Employed, Medical, Financial, Data/Information
Security Consultant
Clients Include:
·
Blue Shield of
·
SunGard (Financial Systems, Business Continuity,
Disaster Recovery),
·
Electronic Arts (Operations runbooks, SOX
compliance),
· BigFix, an IBM Company (Decision Support System/Software Asset Management) , Emeryville, CA
·
Kodak Imaging Network (Network security policies
to meet SOX/PCI),
·
·
McAfee Corporation (Disaster recovery for online
security software sales),
2005 2008 Avocent Corporation (formerly
Technical Publications Supervisor
Supervised department of technical writers. Responsible
for delivering customer documentation for all Cyclades-branded, Linux-based,
security-focused network out of band appliance products, and for OEM
customers.
2003 2005 Self-Employed, Medical, Financial,
Data/Information Security Consultant
Clients Include:
·
Kodak Imaging Network (Network security policies
to meet SOX/PCI),
·
Boston Scientific (Medical ultrasound),
· GAP Inc. (SOX-compliance processes for GAP IT Security. Supervised others.)
·
Robert Half International (Created all corporate SOX compliance policies.)
1998 2003 Network
Equipment Technologies, Inc.,
Department Manager, Information Development / Technical Publications
Managed Information Development / Tech
Pubs department and wrote manuals for network administrators using N.E.T.
multi-platform access equipment used by Dept. of Defense, among others.
Other Clients and Employers
· Xerox Corporation (Versatec, XES, ColorGrafX, LiveWorks)
· Unirad/Technicare (Medical Ultrasound equipment)
· Siemens Gammasonics (Medical Ultrasound equipment)
· NASA (Telecommunications branch, Code 951, traveled to 36 countries)
· Public Service Satellite Consortium, (Satellite communications)
MEMBERSHIPS and AFFILIATIONS
· Senior member, Society for Technical Communicators (STC)
·
Member, Information Systems Security Association
(ISSA),
SKILLS
Security, Compliance and Regulatory: Passed CISSP Exam. Experience with multiple platforms, IDS, IPS, event log
analysis, perimeter security, database controls, access control regimen,
firewall policies. Compliance documentation and policies for
Common Criteria EAL3, ISO, Sarbanes-Oxley (SOX), FIPS, Payment Card Industry
(PCI), HIPAA and COBIT standards. Documentation for UL, FCC, FDA and international
safety standards agencies.
Management Skills: Have managed and supervised small
and medium-sized departments for
Writing and Illustration: Ability to convey highly technical and abstract concepts both in writing and with high-quality illustrations.