|
Ryan M. Hurst |
||
Skills Summary
|
||
|
|
A security consultant and leader with nearly 20 years of experience in various aspects of the field holding roles including test, development, architecture and management of security related technologies and projects. |
|
Experience
|
||
Microsoft,
Redmond, WA
|
11/07 -present |
|
Senior Lead
Program Manager, Windows Security – Strong Authentication
· Responsible for the integration of strong authentication technologies into the Windows platform, including Biometrics, Smart Cards and One Time Passwords (OTP). |
||
|
|
Microsoft,
Redmond, WA
|
03/05 - 11/07 |
|
|
Senior Program Manager
(Architect), Windows Enterprise Networking
· Actively participated in IETF EMU and PKIX working groups where I was an author on several RFCs including RFC 2716bis (EAP-TLS) and RFC 5019 (Lightweight OCSP for High Volume Environments). · Actively participated in Trusted Computing Group where I worked on a number of specifications relating to Trusted Network Connect, where I published IF-TNCCS-SOH. · Worked closely with product team members leading design and threat modeling across all product areas. · Proposed, coordinated and delivered a holistic report on Windows Networking dependencies on Windows Security for the “next” version of Windows. · Worked with partner and customer management teams to develop and deliver presentations on value proposition, deployment strategies and architecture for Network Access Protection and Network Policy Server. · Worked closely with Business Development and Legal and Corporate affairs team to manage technical aspects of strategic partner relationships with network infrastructure VARs. · Acted as a subject matter expert for many teams across Microsoft on the integration of cryptography, authentication, X.509 Public Key Infrastructure and networking technologies into their solutions. · Acted as reviewer and approver for changes to regulatory documentation within Enterprise Networking’s as part of EU and DOJ compliance efforts. |
|
|
|
Microsoft,
Redmond, WA
|
03/05-08/06 |
Lead Program Manager,
Windows Enterprise Networking, Authentication and Authorization
· Lead and managed team focused on the delivery of technologies and solutions supporting enterprise authentication and authorization solutions. · Worked closely with marketing and business development to establish strategy and vision for communication product features and vision to customers and partners. · Worked with partner and customer management teams to develop and deliver presentations on value proposition, deployment strategies and architecture for Network Access Protection and Network Policy Server. · Worked closely with Business Development and Legal and Corporate affairs team to manage technical aspects of strategic partner relationships with network infrastructure VARs. · Acted as a subject matter expert for many teams across Microsoft on the integration of cryptography, authentication and X.509 Public Key Infrastructure into their solutions. · Responsible for a number of platform technologies supporting Network Access Protection, Including IPSEC NAP, Health Certificate Enrollment and the Health Registration Authority. · Lead development and delivery of regulatory documentation for Enterprise Networking’s EU and DOJ compliance efforts. |
||
Microsoft,
Redmond, WA
|
02/03-03/05 |
|
Senior Program
Manager, Member Platform Group Security Architecture
· Consulted with feature teams to identify and design resolutions to vulnerabilities found in both shipping and pre-release software. · Acted as a virtual member of the Passport team chartered to revive the team’s smartcard login project. · Designed several authentication protocols and data protection schemes to address Passport and partner needs. · Worked closely with management to review potential application of partner technology to our own product plans. · Provided incident response for internally and externally identified issues; as part of this, I worked closely with Legal and Corporate Affairs, Microsoft Security Response Center, and other supporting teams across Microsoft. · Acted as a subject matter expert for many teams across Microsoft on the integration of cryptography, authentication and X.509 Public Key Infrastructure into their solutions. |
||
Microsoft,
Redmond, WA
|
12/01-02/03 |
|
Program Manager,
Windows Security
· Responsible for a number of key platform security related programming interfaces including: CryptoAPI, System.Security.Cryptography, CAPICOM and more. · Responsible for Code Signing, Third-Party Root Certificate Authority Partner Program, Digital Signatures and Authentication initiatives driven out of Windows Security. · Developed an IETF draft standard for High Volume Revocation Checking, worked with the development and test teams to implement the client and design the server components. o Worked with VeriSign, TumbleWeed, and CoreStreet to get this standard supported in their own offerings. o Worked with internal teams (IE, SCHANNEL, KERBEROS, etc.) to integrate this work into their next product releases. · Represented team with IETF, TechEd, RSA, DOJ, and large Federal Government customers on issues surrounding Cryptography, X.509 based PKI, revocation and authentication systems in Microsoft software. · Acted as a subject matter expert for many teams across Microsoft on the integration of cryptography, authentication and X.509 Public Key Infrastructure into their solutions. · Provided incident response for internally and externally identified issues; as part of this I worked closely with Legal and Corporate Affairs, Microsoft Security Response Center, and other supporting teams across Microsoft. · Worked very closely with a number of teams on a number of Windows XP SP2 security enhancements, specifically focused on code authentication and access control related problem sets. |
||
Valicert, Mountain View, CA
|
10/99-12/01 |
|
Manager,
Technical Business Development
· Successfully managed a team of 5 engineers/architects on the development of custom solutions and rapid proto-typing for partner engagements. · Team worked very closely with the Business Development Team to engage with partners (TIBCO, PeopleSoft, BEA, etc.) on the integration of ValiCert technology into their product lines. · Individually acted as a product Architect for several ValiCert technologies in the certificate validation suite of products. · Represented the company as a speaker at a number of security conferences and standard bodies including: The Internet Security Conference, RSA, Vanguard Internet Security Conference, IETF, W3C, etc. · Developed training materials used by Professional Services team covering numerous topics including: product deployment, secure datacenter build out and engagement management. · Trained and mentored initial Professional Services team, as well as all employees of the Technical Business Development team. · Acted as Managing Consultant for a number of projects for large customers including: Chase, ABN Amro, Wells Fargo, etc. |
||
|
|
Cybersafe,
Issaquah, WA
|
04/97-10/99 |
Senior
Integration Lead for Automotive and Manufacturing, Professional Services
· Worked with customers on the integration of Cybersafe and partner technology (Kerberos, MVS Pass-Tickets, Single Sign-On, Hardware Security Modules, etc.). · Lead the integration of the company’s largest sale, a multi-million dollar single sign-on deployment involving deep integration into numerous systems. · Hired and managed a team of 5 integrators which ultimately became the company’s mid-west professional services office. · Developed custom software and integration to support various projects (C, Java, InstallShield, etc.) |
||
Technical skills
|
||
|
|
Operating Systems
and Services
· Proficient in both UNIX (Solaris, Linux, OpenBSD, AIX, etc.) and Windows; including software, hardware installation, network configuration, performance tuning and hardening. · Familiar with numerous web server platforms including IIS, NES, Apache and Weblogic. Development
· Experienced in all aspects of commercial and custom software development including test, development, and program management. · Experience developing in C, C++, C#, Java, Jscript, VBScript, Visual Basic, and PERL. · Extensive knowledge on X.509 based technologies including: PKCS standards, X.509, TLS/SSL, PKINIT, XMLDSIG, XMLENCRYPT, S/MIME, etc. · Familiarity with cryptographic algorithms, their characteristics, common usage patterns and pit-falls. · Extensive experiences with cryptographic and security toolkits including OpenSSL, CryptoAPI, Java JCE, GSS-API, etc. Security
Appliances and Solutions
· Experienced with numerous Hardware Security Modules and cryptographic accelerators, including nCipher, Chrysalis-ITS, AEP, Rainbow, Broadcom, etc. · Experienced with development and deployment of numerous two-factor authentication technologies including smartcard, one time password and biometric authentication technologies. · Familiarity with Intrusion Detection/Prevention systems, Firewalls, and other related security infrastructure. |
|