Nicholas P. Bernstein
Ubuntu Certified Trainer #19 (2nd in US) 3/09
Ubuntu Certified Professional 3/09
Linux Professional Institute Level 1 certified 2/09
Netapp Certified Technical Instructor 6/08
@stake Application Security Principles 7/03
@stake Cyberattacks & countermeasures 7/03
Sun Admin II Course Certification 3/99
Worchester Polytechnic Institute 3/99
Sun Enterprise Certified Reseller 1/99
Sun Workgroup Certified Reseller 1/99
Marblehead High School 6/97
Programming/ Scripting: Perl, PHP, Shell, c#
Operating Systems: Linux, Solaris, *BSD, AIX, Mac OS, Windows, Data Ontap
Apps: postfix, mysql, apache, bind, sendmail, samba, nfs, nis, tomcat, hylafax,ldap, Active Directory, Exchange, IIS
Security: Nessus, Snort, ISS, Antisniff, COPS, Tripwire, ISS/CISCO/Sourefiere IDS
Devices: Foundry, Netapp, Cisco
á "Network Security Audits: Nessus", Oakley Inc, One Icon, Foothill Ranch, Nov 10, 2003
á "OSS IDS: Using Snort/Acid/Mysql", Sun Microsystems, El Segundo, Jul 8, 2004
One of the top-ranked technical instructors working with Fastlane.Courses taught include:
á Data Ontap Fundamentals
á Advanced SAN
á Advanced NFS
á Advanced CIFS
á Data Protection & Retention
á Netapp NCDA Bootcamp
á Fundamentals of (netapp) Performance Analysis.
á Ubuntu Certified Professional – was chosen by canonical inc. to teach course pilot.
Microsoft Business Services Operations is the operations and hosted services wing of Microsoft. We supported Microsoft Exchange Hosted Services (frontbridge) which provides hosted antivirus/antispam email filtering for corporate customers.
á One of only two Unix Admins brought up after acquisition of Frontbridge
á Managed LA->Redmond Datacenter Migration
á Managed rollout & Deployed New Server classes across global network
á Built initial staging environment
á One of two Operations Members responsible for 24x7 administration & maintenance of network for six months
á Administered a global, multi-datacenter network consisting of mailservers(postfix+), nameservers(bind), database servers(mysql/sql server), netapps, foundry serverirons
á Wrote various perl scripts / php scripts like:
o Identifying & deleting/quarantining spam/virus outbreaks on the fly
o Webpages showing config file versions/anomalies
o Installations scripts for daily changes
o Package Management
o Emergency feature additions to mitigate high priority customer impacting events
á Acted as security point person
o Nessus security audit
o Snort NIDS/ISS NIDS
o Member of Frontbridge Attack Team
o NIDS/NIPS Eval/Rollout
á Worked with WebRT/Product Studio change management process
á Installed / Deployed hundreds of hosts
á Responsible for responding to high priority customer impacting events
á Responsible for working with dev to identify bugs & create workarounds
á Point person for deploying webapps/web related applications
á Setup linux LDAP authentication
á Wrote multiple design documents for systems & features
á Contributed to release specs
á Created Service troubleshooting guides
á Created Standard Operating Procedures and automated SOP tasks.
á Wrote C# Server Iron Configuration tool
o Generated real & virtual server entires
o Dynamically created hosts file entries
o Dynamically created Monitoring configurations
o SQL inserts for central management database
I was the sole unix administrator at Document Systems, Inc., the largest loan document production company in the U.S. providing auto-generated Loan/Mortgage for realeastate agencies & banks.
á Designed an extensive RedHat kickstart rapid installation system, which duplicates any system w/ 45 minutes start to finish.
á Tied down unix systems chrooting applicable services, migrating away from r* tools to ssh, installing tripwire, local and remote logging tightening down on user permissions,
á Implemented a network monitoring system using nagios. The system provides real-time alerts by email & sms phone messages for any service that goes down. In addition, it provides statistics regarding service uptime.
á Implemented a hylafax fax server, and wrote an perl email->fax gateway which received information regarding destination, subject, etc and inline raw PCL (HP's printer control language), pdf, gif, jpeg, and postscript converted fax image to tiff and passed the file to hylafax for faxing.
á Implemented OpenMosix Linux Cluster (Testing Purposes Only)
á Implemented Linux High Availability using drbd and heartbeat. The system would monitor service and respond to them on a virtual ip. In the case that the primary system went down the secondary system would take over the service and be started within 10 seconds. (Ran in test nework)
á Implemented jakarta-tomcat using apache 2.0 as a front end w/ mod_jk connectors to replace sun iplanet servers. By replacing iplanet and switching from Sun's Java to IBM java 's implementation, we were able to reduce average response time to ¼ the original time.
á Implemented an openbsd based postfix/spamassin email gateway to stand inbetween internal MS exchange server and outside world.
á Audited network both internally & externally using nessus and other various security tools monthly.
á Implemented a bugzilla bug reporting system.
á Internal secure jabber server with company wide user lists & conferencing rooms as well as message logging.
á General administration of apache, iplanet, postfix, nfs, rsync, backupexec and all of the standard daily administration tasks including utilities like web-based log viewers.
á Implemented chkrootkit on all linux servers.
á Implemented SNORT/ACID custom IDS system
Torch Concepts is a Software development firm where I worked as the Systems & Network Admin. The environment consisted of different flavors of UNIX: Solaris, Linux (RH, SuSE, Debian), and FreeBSD as well as MacOS 9 & X and Windows 95-2k and NT.
Belenos, Inc.: Systems & Network Engineer,( 7/1999-8/2000 )
At Belenos, I worked as a UNIX Systems and Network Administrator contracting on many smaller clients.
I was responsible for all level three technical support calls at Network Plus, a Boston Based Level 2 ISP with several thousand users, and one of our main clients.