PDF - Ross Simpson

Transcription

PDF - Ross Simpson
Ross Simpson
HACKER, CODER
Cape Town, South Africa
Email: ross.simpson@gmail.com
Phone: +27 82 448 6259
About Me
My curiosity in how things work (especially the internet, servers, and code) has led to a keen interest in
Information Security ­ and the realization of just how important, but neglected, it is in much of today's code.
I take a lot of pride in my work and career and am hard working. I enjoy solving problems as well as teaching or
mentoring others and hope to one day write a book.
My ideal job would be one in which I'm regularly exposed to new technologies and innovation, am constantly
challenged, and get to work with like­minded people.
Technical Skills
Programming
Advanced
Ruby on Rails
PHP
jQuery
SQL (PostgreSQL and MySQL)
Intermediate
C/C++
Linux Shell Scripting (bash)
Win32 Assembler
Backbone.js and AngularJS
Arduino
Node.JS
Beginner
C#
Android
Python
Objective C
.Net C# and IIS
RubyMotion (iOS apps)
LUA Scripting (World of Warcraft addons)
Information Security
Intermediate
XSS
SQL injection
Wireless network cracking
OWASP Developer Guide
mitmproxy, burpsuite and ZAP
OllyDbg and reverse engineering
Work Experience
VisionOSS
APR 2015 ­ PRESENT
Developer
Worked on "VOSS­4­UC" (unified communications platform)
Fixing bugs and improving device importing
Implementing a new frontend testing solution
Technologies used: Python, MongoDB, Git, Vagrant, JSON Schema, Nightwatch.js
Global Kinetic
MAR 2014 ­ MAR 2015
Security Development and Research
Worked on "Zapper" (mobile payment application)
Investigating mobile and API applications for security issues
Proposing and facilitating the implementation of new security measures and encryption
Evaluating and increasing Application Security Verification level
Assisting development teams with feedback from external security reviews
Technologies used: TFS, .Net, Android Studio, XCode, Node.js, Mono, web proxies
Platform45
Ruby on Rails Developer
JUN 2012 ­ FEB 2014
Agile development ­ scrum methodologies, pair programming and project management
Developed client applications in Ruby on Rails; advised and assisted teams and clients on security fixes in
technologies deployed; security audits of code
Technologies used: Ruby on Rails, PostgreSQL, Redis, BaseCamp, PivotalTracker, Heroku, EngineYard,
Linode, GitHub, Sass, Slim, ElasticSearch
Handguns & Tequila
JUN 2010 ­ MAY 2012
Ruby on Rails Developer
Developed proprietary, and client, applications in Ruby on Rails
Technologies used: Ruby on Rails, PostgreSQL, MySQL, NewRelic, MailChimp, Heroku, Linode, GitHub
JAM Web Designs (USA)
AUG 2009 ­ MAY 2012
PHP Developer
Worked remotely (from South Africa)
Maintained and developed proprietary CMS; improved billing system to align with PCI compliance; improved
scalability (SQL optimization and page caching)
Technologies used: PHP, Apache, MySQL, Memcache, ImageMagick, Amazon EC2
Spaceacre
AUG 2004 ­ JUL 2009
PHP Developer
Developed intranet, e­commerce and billing applications; maintained proprietary CMS; handled registration
and setup of clients domains; client technical support
Technologies used: PHP, Apache, MySQL, Memcache, ImageMagick, SVN, Iveri, PayPal
Achievements
Conferences spoken at
ZaCon ­ "iPhone Hackery" ­ 9 October 2010
ZaCon ­ "Game Hacking" ­ 27 October 2012
B­Sides Cape Town ­ "Game Hacking" ­ 1 December 2012
B­Sides Cape Town ­ "Lock Picking" ­ 1 December 2012
Workshops and events hosted
Hacking with Metasploit ­ 6 April 2013
Android hacking with Mercury (aka Drozer) ­ 13 July 2013
Def Con 20 Documentary screening @ Labia ­ 17 August 2013
Co­organizer of monthly local security community meetups ("0xC0FFEE Cape Town")
Other
AGD Interactive ­ assisted with hosting+launching of their games
PHP­SciTE ­ modified a popular text file editor, improving it for PHP development
Currently working on an Arduino/RaspberryPI + Python home automation system
Lead developer of CTF365.com
Education
CTI Education Group
2001 ­ 2002
Comprehensive Programming Diploma
Data processing concepts
Operating Systems I ­ DOS and Windows
Operating Systems II ­ Linux
Program Design
C and C++ Programming Languages
System Analysis and Design
Oracle Relational Database Design
Microprocessors and Logic Concepts
Fairmont High School
Matric
English
Afrikaans
Maths
Science
Biology
Computer Science
1996 ­ 2000