| Contact Information | |
| Name: | Hamidreza Attar |
| Email: | hamidreza.attar (at) gmail (dot) com [email concealed] |
| Location: | Stockholm, , Sweden |
| Resume | |
| Position/Title: | Security Engineer |
| Resume: |
Hamidreza Attar hamidreza.attar (at) gmail (dot) com [email concealed] +46 76 2899518 Forskarbacken 9 LAG 510, 11415 STOCKHOLM - SWEDEN PERSONAL STATEMENT Six years of work experience with Unix-based and Windows-based systems, including administration, networking, programming, etc., plus my master education in information security can be beneficial to software projects especially where Unix knowledge is required or when security is a concern. EDUCATION KTH (Royal Institute of Technology) Stockholm - Sweden : 2006-2008 Master of Information and Communication Systems Security Thesis: Security Framework for Web Applications Mentor: Dr. Matei Ciobanu, Department of Computer and Systems Sciences, KTH University Passed Courses: Introduction to Information Security (Grade B) Network Security (Grade A) Introduction to Cryptography (Grade B) Security Architecture for Open Distributed Systems (Grade A) Security for Java Environment and Electronic Commerce (Grade B) Security in Mobile and Wireless Networks (Grade A) Advanced Inter-networking (Grade A) Network Programming with Java (Grade A) Internet Security and Privacy (Grade A) Amirkabir University of Technology Tehran - Iran : 1997-2003 Bachelor of Software Engineering Dissertation: Design and implementation of a Z39.50-based WebCAT client for communicating MARC21 bibliographic records Mentor: Dr. Mohammad Reza Meybodi, Department of Computer Engineering, Amirkabir University of Technology EMPLOYMENT BACKGROUND Security Researcher Accolm Co. - www.accolm.com Stockholm (Sweden) February 2008 to July 2008 (Internship - Master Thesis) Accolm is an IBM partner and has focus on the security of web applications. I designed a security framework which covers the software life cycle process of web applications. Achievements: The framework was presented to the university of KTH as my master thesis. Software Developer PDC (Parallell Dator Centrum) - www.pdc.kth.se Stockholm (Sweden) June 2007 to August 2007 (Summer Job) PDC has a 'grid' of high-performance computers offering computational resources to the needs of the Swedish academic research and education. I designed and implemented a Kerberized secure Python socket (written in C) for authentication between MVAPICH2 daemons (running on the grid nodes), using Kerberos5 user-to-user mode. Achievements: The resulting socket performs authentication automatically at the 'connect' time (using Kerberos credentials) and it protects the communication channel by encryption. Technical Manager TACFAM Co. - www.tacfam.ir Tehran (Iran) March 2004 to August 2006 TACFAM is a telecommunication company with national-wide projects. I worked on Intelligent Network (IN) and Unified Messaging System (UMS), which together provide nine value-added services over the telecommunication network of Tehran. My responsibility was technical supervision and support of a DATA/Telecom (IP/SS7) network with Sun Solaris and HP/UX servers, SUN and HP MC/SG clusters, IBM Informix database, Veritas volume-manager, and Huwaei IN/UMS platform, configured for disaster recovery over two physically separate sites, over a hardware platform of HP rp5470, Sun Netra 1405, Sunfire V240, Sun Blade 2000, Sun Blade 150, Quidway Ethernet Switches, Cisco 2600/3600 Routers, HP StorageWorks Virtual Array 7110, Sun StorEdge MultiPack, Sun Storedge 3310, with E1, Fiber Optic, Serial, and Ethernet connections. Achievements: The Intelligent Network (IN) project was a 3 million USD project. By the time I left TACFAM (for my master study), IN had been already launched, making a profit of about 600,000 USD per month. Also the Acceptance Test of the Unified Messaging System (UMS) was complete and it was ready to become operational. Network Administrator Sharif Network Security Center (NSC) – nsc.sharif.edu Tehran (Iran) May 2003 to February 2004 Affiliated to Sharif University of Technology (known as the best university of technology in Iran), NSC has focus on academic work and research in computer security field. I was the administrator of a Linux-based network, responsible for configuration and management of various services, e.g. HTTP (apache), SMTP (sendmail), SSH, FTP, NFS, DNS (bind), DHCP (ISC), Kerberos5, SAMBA, Squid, iptables, Amanda, etc., and more than 30 workstations. I also tested a home-grown multi-node firewall and its associated kernel modules for functionality and performance. Software Developer SanadPardaz Co. - www.sanadpardaz.com Tehran (Iran) July 2001 to March 2003 SanadPardaz develops ERP and automation system software. I was software developer for accounting, bill of material, and invoice subsystems. OTHER RELEVANT EXPERIENCE Design and implementation of an MSWord-to-LaTeX converter (Autumn 2003) Design and implementation of a monitoring and control software for TamamTadbir's THC-M4 industrial humidity and temperature controller (Spring 2002) Member of Operating System and Security Conference (OSSC 2003), Sharif University of Technology, December 24-25, Tehran, Iran, 2003 Teaching: Unix Operation and Management, Summer 2006 Unified Messaging System, July 2006 Intelligent Networks, August 2005 Intelligent Networks, May 2005 C Programming Language, Summer 2000 CERTIFICATE IBM Tivoli Compliance Insight Manager 8.5 Installation, Administration, and Reporting IBM – Stockholm (Sweden), 2008 IBM Rational AppScan Technical Sales Mastery IBM – Stockholm (Sweden), 2008 Intelligent Network TELLIN-WIN SCP/SMS Engineer HUAWEI Co. - Shenzhen (China), 2005 Intelligent Network TELLIN-SMAP Technician HUAWEI Co. - Shenzhen (China), 2005 FIN Equipment Commissioning Cooperation Engineer HUAWEI Co. - Tehran (Iran), 2005 SKILLS Technical Skills Languages: C, Java, VB6, Pascal, Unix Shell Script, Python, HTML, XML, SQL Operating Systems: Red Hat Linux 7.2/9, Fedora Core 4/5/6/7/8/9, Windows XP/98/95/2000/NT, Sun Solaris 8/9 Networking: TCP/IP, Ethernet, WLAN (IEEE 802.11) Database: MS-SQL Server, IBM Informix, MS-Access, MySQL Technologies: CSS, ASP, JSP, LDAP, ODBC, JDBC, JNDI, JSP, RMI, Java Servlets, Java SecurityManager Software: Apache, Sendmail, ssh (OpenSSH), ftp (vsftpd), NFS, BIND, DHCP (ISC), Kerberos5, SAMBA, Squid, iptables, Amanda, Visual Studio 2000, Visual SourceSafe, MS Office 97/2000/2003, GCC, CVS, Eclipse, NetBeans IDE, GDB, Make, Wireshark (Ethereal), Nmap, tcpdump, Nessus, AppScan, WebScarab, Vmware Workstation, LaTex (Kile) Concepts: OOP, Multi-threading, Socket programming, Python module development, Kerberos 5 API, high performance SUN clustering, RAID configuration Personal Skills Easily getting merged into new projects and environments Talented in learning and understanding new technologies, and always seeking to learn Strengths in planning, problem solving, and attention to the details Able to work under pressure, to define project priorities, and to meet the deadlines RELATED KNOWLEDGE Knowledge of web threats and their mitigation methods Knowledge of cryptography and cryptographic algorithms Knowledge of PKI X.509 certification system Knowledge of Java security architecture Knowledge of RSN, WAP and WEP wireless security architectures Knowledge of network security protocols, network routing protocols Knowledge of Intelligent Networks; INAP signaling, Intelligent Network Conceptual Model (INCM), IN CS-1 (ITU-T Q.1210 to Q.1219 Standards), SS7 signaling, architecture and operation of circuit switched networks Knowledge of Object Oriented software design and UML INTERESTS Web Security Network Security Cryptography/Cryptanalysis Programming on Unix-based Platforms Embedded Programming Tennis, Swimming, Bicycling, Watching Movies, ... LANGUAGES Farsi as the mother language Fluent in English; reading, writing, and speaking |