Gary J. Hardy
Very seasoned Senior Software Engineering professional with over 35 years of in-depth and varied systems development/management knowledge. Excellent problem solving skills and theoretical vision to practical implementation experience. Major interest in building great products, working in a team environment and delivering effective technologies for real world business solutions.
There are three reliable, mature, broadly understood non-COTS enterprise application platforms/frameworks circa 2014; JEE, LAMP, and .NET. For a number of years my development efforts have been focused on leveraging two of those well-understood technologies; Java Enterprise Edition and the open-source Linux stack. Effectively and efficiently capitalizing on those technologies to meet current business needs is always my primary goal. Dealing with the known limitations for a project’s/product's server technology stack [e.g. tomcat/java/spring-mvc/apache-cxf/hibernate/rdbms] vs. “exploring” the unknown limitations of a new [and, in theory, improved] technology is almost never in the best interest of any business. Put another way. Enterprise architecture [and development thereof] must be 99% solid product development and 1% R&D to succeed.
Dun & Bradstreet, Inc. - Short Hills, NJ (10/14-DATE)
As a Distinguished Engineer at Dun & Bradstreet I am tasked with offering technology advice, guidance and mentorship to senior management, architects and global engineering leaders. Also influencing, guiding and driving product directions from a core asset perspective. Additionally, helping define the technical strategy for a software development life cycle that best utilizes today’s common software developer toolsets and best practices. Finally, assisting in continuing corporate-wide security risk analysis with focus on the ever evolving technology stacks and global threat landscape.
Kaplan - Fort Lauderdale, FL (5/14-10/14)
Target Architecture Consultant
Responsible for defining the focus, direction and corporate vision in the development of the target architecture roadmap need in the migration of the legacy information systems to a modern cloud-based SaaS solution. For the Kaplan business systems the cornerstone target architecture included Salesforce1 CRM and various AppExchange packages. The target architecture also included the definition of the entities specified in a Master Data Model and a reference implementation information system application selection.
V-Key, Inc. - Singapore & Redwood City, CA (5/13-12/13)
Chief Enterprise Architect
Responsible for the enterprise architecture and development of the V-Key advanced mobile application security detection and protection product suite [JEE/iOS/Android]. Lead in the information technology product development efforts and managing the associated expenditures more effectively to serve the mission and goals of the V-Key organization. V-Key EA Primary Mission Goal; Build the ultra-high-transaction rate and threat intelligence back-end systems necessary to support an elastic platform for V-Key’s advanced mobile application security detection and protection product suite.
Alien Vault - San Mateo, CA (1/12-1/13)
Network Security Engineering Consultant
Network security engineering support for the AlienVault Unified Security Management [USM] OSSIM platform within the US Sales team. OSSIM (Open Source Security Information Management) by AlienVault is an open source Security Information and Event Management (SIEM), comprising a collection of tools designed to aid network administrators in computer security, intrusion detection and prevention. My role at AlienVault included deployment, configuration and use of the OSSIM software components including: Nessus OpenVAS, snort, ntop, nmap, nagios, snare/wmi, ossec, ocs, and OSSIM data source collectors & corrections directives.
Gary J Hardy Consulting - USA (5/08-12/11)
Independent Software Engineering Consultant
Since restarting my independent consulting practice, client companies have included; Fortify Software, NBC Universal iVillage, and Kaplan, Inc..
During my 3+ year engagement at Kaplan Test Prep and Admissions [KTPA] I held the roles of Principle Architect and lead developer reporting directly to the CTO. My enterprise architectural guidance and development efforts laid the foundation for a true service oriented architecture [SOA] used throughout all of Kaplan Business Systems. I designed and developed a complete set of KBS transactional and Operational Datastore accessibly APIs [REST xml/json/soap web services via Spring/CXF/Hibernate] used to expose the entire business platform in real time to a wide variety of internal and external client applications. Additionally, I built a web-based ad hoc reporting system utilizing the KBS web services API as a simple Spring/MVC application heavily fronted with jQuery/CSS/JSTL-XML.
During the NBC Universal iVillage engagement filled the role of Architect and principal developer in the deployment of a new Drupal-based web site, NeverSayDiet.com. As principal developer wrote two Drupal v5.12 modules [PHP 5 & MySQL 5] from scratch; 1) Used to fully integrate the NBC Universal ad server [DoubleClick DART] interface and configuration, and, 2) Used to integrate with the existing java-based iVillage REST API used for authentication, user profiles and newsletter registrations.
For HP Fortify Software, provided training and consulting services for the Fortify Source Code Analysis Suite v5.5 & Fortify 360 v1.1 product sets. I have personally deployed the Fortify Suite of security products for numerous Fortify customers. I have integrated the Fortify SCA into a wide variety of build processes. I have written hundreds of custom Fortify SCA rules. I have audited hundreds of thousands of Fortify SCA results. I have trained numerous development teams in the optimal use of the HP Fortify security solutions in their environments.
Cigital, Inc. - Dulles, VA (5/2007-5/2008)
Primary focus as a New York area Managing Consultant was to help lead Cigital in the ongoing effort to best utilized Fortify Software Product suite and further advance the Cigital/Fortify relationship. As a Managing Consultant at Cigital, Inc., I provided software security analysis domain expertise at Bloomberg, Barclays, Paychex, and Sterling Commerce specifically in the areas of enterprise software development, code review and the Fortify Software Source Code Analysis Suite. Additionally, at Cigital, Inc., I developed a comprehensive knowledgebase and set of training materials for the Fortify Software Source Code Analysis Suite based on my pervasive experience.
Fortify Software - Palo Alto, CA (3/2004-4/2007)
Software Security Consultant
My position at Fortify was as Sales Engineer / Software Security Consultant [SSC] as well as a member of the original product development team. As employee number 7 at Fortify I helped define and build the Fortify Source Code Analyzer [Fortify SCA] and the associated Fortify Suite of security products. I worked in Fortify engineering for the first several months helping to define what would become the Fortify Source Code Analyzer 1.0. I then provided pre- and post-sales support worldwide. I defined the SSC role at Fortify; wrote and/or defined a number of the Fortify demo applications (java/J2EE, c/c++, .NET), wrote a wide variety of cross-platform tools for the field and as end customers. I performed presentations and software demonstrations to audiences from c-level executives through senior development team groups. I provide end customer training and professional services in the deployment of the Fortify Software suite.
Gary J Hardy Incorporated - USA (1986-2004)
Independent Software Engineering Consultant
In eighteen years as an independent Software Engineering Consultant my primary client focus was equally divided between top-tier Operating System corporations, network ISV firms, and many small to large scale private/public sector organizations in the financial and commercial software product spaces. Client companies included; Apple Computer Incorporated, Nortel Networks, Digital Equipment Corporation, General Electric Company, Intel Corporation, International Business Machines Corporation, Earthlink Network, Netscape Communications Corporation, Sun Microsystems Incorporated, Time Warner Interactive, Wells Fargo Bank, SEI Investments, AEGIS Insurance Services, Time Warner Interactive, American President Lines.
My roles ranged from Interim Chief Technology Officer to Principal Architect to Lead Developer and individual contributor. My efforts as Interim Chief Technology Officer [at MyPublisher.com] included management of a $2MM IT budget focused on complete development team hiring & management, datacenter build-out, project logistics, development lead and all product SDLC’s. Additionally, helping to educate management and staff on current web-commerce technologies. Also, establishing technical standards for the Company's implementation of strategies that ensured a stable, reliable and scaleable architecture. My efforts as a Software Engineering (and, individual contributor) included some very low-level implementations including the development of the native code dynamic loader linker for the JavaOS JSL [Java Service Loader] for IBM and JavaSoft. Plus, development of the MacOS SOCKS/STREAMS network modules used to support the Instant Internet Gateway product for Nortel Networks. Additionally, and more broadly, played an integral role as member of development teams at SkyMall.com, PeerLogic, ICON Medical System, DuPont Design Technologies, Measurex Automation Systems, and many other small to mid-sized firms.
CSPInc - Billerica, MA (1986)
Customer Support Group - Quality Assurance Manager
Digital Equipment Corporation - Marlboro, MA and Merrimack, NH (1983-1986)
Systems Software Engineer
Union Carbide - Linde Division, Tonawanda, NY (1982-1983)
Computer Applications and Process Development Group - Engineer
Various residential and commercial construction positions in both New England and the Philadelphia area.
Education - B.S. Chemical Engineering 1982, College of Engineering and Physical Science
University of New Hampshire – Durham
Military - U.S.ARMY (1971)
Military Police [MOS: 95B10]
National Defense Service Medal and Vietnam Service Medal. Honorably Separated.