+61 *** *** ***
*** ****** Street,
Information Security Engineer with a strong background as Linux system administrator and Unix middleware support engineer. Recently involved as Tenable SME (20 months project) for designing, building and managing a Vulnerability Management Platform - based on SecurityCenter, Nessus and Tenable.io - in order to provide a consolidated view of all the vulnerabilities and level of adherence to Compliance Standards, prioritizing security risks and providing a clear unified security posture to the organization. Other experiences involve “DevOps Engineering with Security in Mind”, by designing, building and managing a fully secured and automated Infrastructure in the Cloud. Strong experience with automation/configuration management tools such as Saltstack and Puppet. Ability to use a wide variety of open source technologies and cloud services. Strong experience with SQL and NoSQL. Advanced skills with shell scripting, procedures automation, systems performance analysis and tuning. Always open to new technologies, frameworks and tools with special regard to the Cybersecurity space.
Good skills and many years of experience with Linux platforms (Debian, RedHat, Fedora, CentOs, Mint, Ubuntu, Slackware, Suse, Backtrack, Kali). HP-UX, AIX, Solaris platforms. Windows 2012, 2000, 98, XP and 7.
*Opensource technologies, services and tools
Elasticsearch, Logstash, Kibana, Kafka, LAMP (Apache, MySQL, Php) systems, Postfix, Ntp, Squid, Tomcat, Jboss, Dovecot, Roundcube, Amavis, Bind, Munin, Nagios, Ipvsadmin, ldirectord etc..
*Configuration management tools
*Languages and Databases
*Networks and Security
Good knowledge of networking, TCP/IP stack, cryptography, firewalls, Vpn, Dmz, IDS, Vulnerability scanning, Sniffing, Penetration testing, Monitoring, Logging. Some tools/services it worth to mention are: openssh, openssl, gpg, nmap, iptraf, netstat, syslogd, openvpn, strongswan/openswan (ipsec), nessus, metasploit framework, armitage, ettercap, wireshark, arpwatch, ettereal, snort, modsecurity, bro, aide, openscap.
*Social skills and competences
Ability to work in multi-task and fast pace environments with good team integration and strong communication skills.
Aleron Security - www.aleron.com.au | 2014 JAN 06 - PRESENT
(IT Security Company based on Sydney, Australia)
Information Security Engineer / DevOps Engineer
Tenable and Vulnerability Management expertise maturated during last project at Woolworths. Linux System Administration on RedHat, CentOS, Debian, Ubuntu. Designing, building and managing a secure and fully automated Infrastructure in the Cloud - to support Continuous Integration and Continuous Deployment - based AWS, Saltstack, GitHub, Linux Centos7 and (a few of) Windows 2012 Servers; running services like Apache, Postfix, Squid, Ntp, ELK Stack, Jenkins, Nagios, Nodejs, Certification Authorities, Active Directory. Infrastructure properly hardened and all the security controls put in place. ELK Stack Installation and Security Consultant Services for CBA, McDonald’s, eHealth NSW, WWF, Westpac. Strong experience with Puppet, Hiera (yaml and encrypted yaml), Cloud-init. Hadoop/Cloudera clusters installation, configuration, security, performance analysis and tuning.
Woolworths Supermarket - www.woolworths.com.au | 2017 FEB 20 - 2018 OCT 31
(Supermarket based on Sydney, Australia)
Information Security Engineer / Tenable SME
Tenable Subject-Matter Expert for a Vulnerability Management Uplift Project, consisting of designing and deploying a centralized, consistent, reliable Vulnerability Management solution, uplift the Woolworths Security Operations Center (SOC) by providing new tools and technologies and ultimately raise the organization level standards for Threat/Patching Management, Incident Response, Asset Discovery. Tenable products deployed: SecurityCenter, Nessus, Tenable.io (including AWS Integration). Infrastructure mainly built on RedHat 7 Servers (and a few Windows Servers). Both application and infrastructure secured and compliant with the Organization Security Standards (CIS and PCI when applicable).
Intesa Sanpaolo Bank - www.intesasanpaolo.com | 2008 JUL 07 - 2013 APR 17
(one of the major banking groups in the euro zone)
Linux System Administrator/ Middeware Support as Primeur consultant - www.primeur.com
System administration on Linux (Debian, CentOs) platforms.
Middleware support on Solaris, HP-UX, AIX and windows platforms.
LAMP stack deployment and maintenance (Linux, Apache, MySQL, PHP) , services monitoring (Munin, Icinga/Nagios), performance analysis and tuning.
Puppet experience for system configurations, in Master-Agent mode.
File transfer application installation/integration/configuration, custom procedures develop (advanced shell scripting using bash, ksh, php scripting)
and automation using crontab, autosys or IBM TWS schedulers.
Load balancing experience using ipvs and ldirectord.
Develop and mantain small web Php and Java applications (HTML5, Jquery, CSS3).
System test and production software releases and testing.
Other products used: Oracle Databases; JBoss/Tomcat application server; Clear Case code repository; IBM Websphere MQ.
Intesa Sanpaolo Bank - www.intesasanpaolo.com | 2009 MAR 01 - 2011 APR 27
(one of the major banking groups in the euro zone)
HP Products Developer and Support as Primeur consultant - www.primeur.com
Script develop to monitor web applications performances. HP BAC Support (Business Availability Center), HP VuGen script development (Virtual User Generator, LoadRunner) and QTP scripting (HP Quick Test Professional), HP BPM (Buisiness Process Monitor).
Fastweb S.p.a. - www.fastweb.it | 2007 APR 01 - 2008 JUN 20
(the largest alternative fixed-line telecommunications provider in Italy)
Unix Application Support as Zeropiu consultant - www.zeropiu.com
Unix support on linux and solaris platforms, advanced shell scripting, Java-PL/SQL applications support, MySQL and Oracle databases.
Pre-production and production weekly/infra-weekly software releases and testing.
Zeropiu - www.zeropiu.com | 2006 OCT 10 - 2007 AUG 31
Java Web Developer for “Comune di Napoli”, project name: D.P.S. Tool
Leadercom s.r.l | 2005 AUG 15 - 2006 AUG 15
Web management software design, develop and maintenance.
Catania University Residence “Alcantara” - www.arces.it | 2005 Mar-Dec
Teacher for the following courses:
“GNU/Linux Networking” (college/undergraduating students)
“Web Programming” (comprehensive school students)
Caltanissetta Linux User Group - www.clug.it | 2004 - 2005
C.L.U.G Member , no profit organisation.
We organized Linux Day 2004 e 2005 events, I personally held the following workshops:
“Sniffing/Net – hub and switch LAN sniffing” : traffic sniffing and analysisin an Hub LAN and in a Switch LAN. Practical demonstration and countermeasures.
“Digital Rights and Palladium” : Palladium critical reflection,last technology against digital rights. Next future people wait for, but ignore it. Palladium, what is. Who wants it. Who not and why.
Computer Scienze Graduated at Catania University | 2001 OCT 10 - 2006 JUL 26
Scientific High School qualification | 1996 - 2001
Photography, Motorbike Riding, Fitness, Guitar, Drawing/Painting, Scuba Diving, Running
References Available on Request
carmelo crivelli © 2013 - lotek.it