Professional Summary

Ian is a seasoned cybersecurity expert with over 14 years of experience, specializing in high-performance computing (HPC) environments for the past 8 years. Currently serving as HPC Security Architect at Lawrence Livermore National Laboratory, Ian leads initiatives that safeguard critical national assets. Renowned for his commitment to “leaving things better than he found them,” Ian excels in operational security, secure web service deployment, system administration, software engineering, and team leadership. An active contributor to open-source communities and a published author and speaker, he is dedicated to mentoring the next generation of cybersecurity professionals and driving innovation in the field.

Why

To leave things better than I found them, so that those around me believe they can make a difference.

Employment

Lawrence Livermore National Laboratory (June 2010 - Present)

↪ HPC Security Architect & Security Operations Team Lead

Livermore Computing, September 2021 - Present

  • Leads team of engineers focused on continuous monitoring of HPC environment, including monitoring of system health and performance, security monitoring for malicious or undesirable activity, detection and response to issues that arise.
  • Identifies gaps and areas for improvement in the overall security posture of Livermore Computing (LC) High Performance Computing (HPC) center.
  • Sets direction and vision of center wide improvements to automation, including modernizing developer workflows around secure DevOps practices.
  • Responsible for defining, performing, and coordinating cyber assessment activities on all Livermore Computing (LC) production, infrastructure, and testbed systems.
  • Authored new DISA Security Technical Implementation Guide (STIG) for LLNL-developed “TOSS” HPC operating system.

… as Cyber Assessment Coordinator, November 2016 - Present

  • Monitors relevant security vulnerability and threat intelligence feeds from vendors, LLNL Cyber Security Program (CSP), and other sources.
  • Defines LC best practices and processes based on industry accepted configuration standards.
  • Provides technical guidance on technologies and innovations that impact the security posture of LC systems.
  • Performs penetration testing against LC systems and provide feedback to staff and management on findings and remediation steps.

… as Alternate Organization Information System Security Officer (AOISSO), April 2018 - August 2022

  • Responsible for overall security of Livermore Computing (LC) High Performance Computing (HPC) center.
  • Ensures and tracks compliance of LC systems to LLNL, DOE, and Federal Cyber Security requirements.
  • Encourages and directs process improvement and automation of security efforts within Livermore Computing.

↪ Web Services Team

… as Senior Engineer, October 2015 - Present

  • Serves as lead engineer for deployments and automation; implemented improvements to bring service downtimes to (<10) minutes rather than hours.
  • Increased deployment rate from quarterly to monthly for web service releases.

… as Team Lead, November 2021 - June 2022

  • Leads team of engineers responsible for maintaining suite of web services supporting ~ 3,000 users, including Atlassian (Confluence, Jira, Crowd), GitLab, JupyterHub, Apache, and Nginx services.
  • Directs and oversees efforts to modernize web technology stack including investigations into continuous integration and containerization to support improved reliability and ease of maintenance of services.

↪ Open Source Evangelist

February 2015 - Present

↪ Computer Engineer

October 2012 - November 2016

  • Provided software development support and technical guidance to LLNL code teams; developed and supported Python packaging for developer integration with high performance computing resources and clusters.
  • Advocated for adoption of and trained fellow staff on modern software development technologies, including: Git, Stash/Bitbucket, Open Source development, and workflow management
  • Administered six Atlassian instances running across various networks, serving approximately 3,000 end users.

Consulting Work

November 2018 - Present

  • Provides cyber security consulting services for businesses and individuals looking to get ahead of the next cyber threat.
  • Offers penetration testing and vulnerability assessments, analyzing networks for opportunities a hacker would use to gain access to important or sensitive data on your network.
  • Serves as a Subject Matter Expert in a variety of cybersecurity areas as a 1099 contractor, including: vulnerability assessments, internal penetration tests, and training course development & review.
    • SANS, November 2018 - Present
    • Black Hills Information Security, October 2020 - Present
    • InGuardians, June 2021 - Present

Publications

Security Technical Implementation Guides (STIG)

Presentations

  • DevOps in HPC, 4th NIST HPC Security Workshop, May 2024, Slides
  • Monitoring HPC Security at LLNL, 4th NIST HPC Security Workshop, May 2024, Slides
  • Pass On What You Have Learned: Deploying to Production, Elastic Public Sector Summit 2024, March 2024, Slides
  • Building DevOps into HPC System Administration, NLIT / S3C, June 2023, Slides
  • Keeping It All Safe: LLNL HPC Security Architecture, 3rd NIST HPC Security Workshop, March 2023, Slides
  • Development of the TOSS 4 STIG, 3rd NIST HPC Security Workshop, March 2023, Slides
  • You Must Unlearn What You Have Learned, ElasticON Public Sector, February 2023, Slides, Video
  • Addressing Cybersecurity Standards / Policies in HPC Environments, Supercomputing 2021 Birds of a Feather, November 2021, Slides
  • Intro to Git for Security Professionals Workshop, Wild West Hackin Fest Way West, June 2021, Slides
  • Releasing Your First (Python) Open Source Project to the Masses!, Wild West Hackin Cast, January 2021, Slides
  • Intro to Git for Security Professionals Workshop, Wild West Hackin Fest, September 2020, Slides
  • Post Exploitation in Developer Environments, SANS Pen Test Hack Fest Summit, November 2018, Slides
  • At the heart of a Supercomputer, is Open Source Software, RedHat OPEN FIRST DC, September 2018
  • How Open Source Supports the Largest Computers on the Planet, DOE Exascale Computing Project Best Practices Webinar, July 2018, Slides, Video
  • How Open Source Collaboration Benefits Cyber Security, Department of Energy CyberCon, June 2018, Slides
  • Open Source in Service to National Security, Code for America / Code.gov Meetup, May 2018, Slides
  • Your Secrets are Showing! How to find if your developers are leaking secrets, BSidesSF 2018, April 2018, Slides, Video
  • 2018 State of Open Source, Software Improvement Networking Group, Lawrence Livermore National Laboratory, March 2018, Slides
  • Open Source Workflows at LLNL, Code.gov Bi-weekly Call, January 2018, Slides
  • U.S. Adoption of HTTPS, CyberFest 2017, Lawrence Livermore National Laboratory, October 2017, Slides
  • Developing Open Source in Service to National Security, Oak Ridge National Laboratory (Invited Talk), June 2017, Slides
  • Introduction to Git, Computation Summer Scholar Program, Lawrence Livermore National Laboratory, June 2017
  • Developing Open Source in Service to National Security, University of California - Santa Cruz (Invited Talk), February 2017
  • Developing Open Source in Service to National Security, GitHub Universe, September 2016, Slides, Video
  • Open Source Birds of a Feather, Software Improvement Networking Group, Lawrence Livermore National Laboratory, August 2016
  • pep8 vs PEP-8, Lightning Talk, PyCon 2016, Slides
  • Introduction to Git, Computation Summer Scholar Program, Lawrence Livermore National Laboratory, July 2016, Slides
  • Towards Open Source and Collaboration, Software Improvement Networking Group, Lawrence Livermore National Laboratory, February 2016, Slides
  • Stash Administration, Atlassian Administrators Meeting, Lawrence Livermore National Laboratory, August 2014
  • Git Tutorial: Managing Workflows, Software Improvement Networking Group, Lawrence Livermore National Laboratory, January 2014
  • Git Tutorial Series Part III: Merging & Workflows, Software Improvement Networking Group, Lawrence Livermore National Laboratory, November 2013
  • Git / Stash, Software Improvement Networking Group, Lawrence Livermore National Laboratory, August 2013

Guest Posts / Interviews

  • Spotlight Story: Interns and Open Source: A Productive Combination, Code.gov on Medium, June 2018, Blog Post
  • The case for open source software, 18F Blog, June 2018, Blog Post
  • Ambassadors of Code, S&TR Preview, January 2018, Interview Video
  • How one national lab is opening up code without compromising national security, FedScoop Post, September 2016, Article

Technical Reports

  • R. Cook, E. Dube, I. Lee, L. Nau, C. Sherada, and F. Wang, Survey of Novel Programming Models for Parallelizing Applications at Exascale, LLNL-TR-515971, Lawrence Livermore National Laboratory, November 2011, Report

Education

Masters of Science in Computer Engineering, October 2012

University of California - Santa Cruz, Santa Cruz, CA

Thesis: Dynamic Instruction Fusion

Bachelors of Science in Engineering in Computer Engineering, June 2009

University of Connecticut, Storrs, CT

Professional Activities / Technical Ability

Certifications

Awards

  • Eagle Eye Award, Lawrence Livermore National Laboratory, 2017
  • Director’s Institutional Award, Lawrence Livermore National Laboratory, 2017
  • Director’s Institutional Operational Excellence, Lawrence Livermore National Laboratory, 2015
  • Excellence in Teaching, University of California - Santa Cruz, 2012 - 2013

Open Source Project Contributions

Memberships / Organizations

  • SANS GIAC Advisory Board, 2017 - Present
  • Association for Computing Machinery (ACM), 2009 - Present
  • Institute for Electrical and Electronics Engineers (IEEE), 2008 - Present
  • ACT-IAC Climate Change Workgroup - HPC Project, 2023 - Present

Resume reviewed and released by LLNL as: LLNL-MI-767054