Skip to content

Instantly share code, notes, and snippets.

@stevenjohnstone

stevenjohnstone/resume.json

Last active October 27, 2024 15:10
Show Gist options
  • Save stevenjohnstone/2e9f841813fbb9640ee79c6b98b5cb8d to your computer and use it in GitHub Desktop.
Save stevenjohnstone/2e9f841813fbb9640ee79c6b98b5cb8d to your computer and use it in GitHub Desktop.
Download ZIP
Raw
resume.json
{
"meta": {
"theme": "paper-plus-plus"
},
"basics": {
"name": "Steven Johnstone",
"label": "Software Engineer with Strong Security Focus",
"email": "[email protected]",
"summary": "I like to break things and help fix them",
"location": {
"countryCode": "UK",
"address": "Lanark, South Lanarkshire, United Kingdom"
},
"profiles": [
{
"network": "Github",
"username": "stevenjohnstone",
"url": "https://github.com/stevenjohnstone"
},
{
"network": "LinkedIn",
"username": "steven-james-johnstone",
"url": "https://www.linkedin.com/in/steven-james-johnstone/"
}
]
},
"work": [
{
"company": "Smarter Grid Solutions",
"highlights": [],
"position": "Product Security Lead",
"startDate": "2024-01-10",
"summary": "Application security for critical national infrastructure. Making CISA's Secure By Design a reality",
"website": "https://www.smartergridsolutions.com/"
},
{
"company": "Girnin Dug",
"highlights": [],
"position": "Lead Security Engineer",
"startDate": "2020-05-31",
"endDate": "2024-01-10",
"summary": "Adversarial product security testing. Red teaming of development teams",
"website": ""
},
{
"company": "Mirantis",
"endDate": "2022-05-14",
"hightlights": [],
"position": "Principal Security Engineer",
"startDate": "2021-09-17",
"summary": "Docker Enterprise FIPS 140-2 maintainer; established and ran PSIRT; onboarded Mirantis as a CVE Numbering Authority",
"website": "https://github.com/mirantis/security"
},
{
"company": "Sabattical",
"endDate": "2021-09-17",
"position": "Resting",
"hightlights": [],
"startDate": "2020-05-31",
"summary": "Very badly timed (COVID) sabattical after intense period of back-to-back startups"
},
{
"company": "Next DLP (formerly Jazz Networks)",
"endDate": "2020-05-31",
"highlights": [],
"position": "Founder & Chief Security Officer",
"startDate": "2017-05-31",
"summary": "Leader in security of the product and company infrastructure. ISO 27001 lead-implementer. Golang developer. Hands-on security tester. Successful exit: company split and acquired by Motorola and Fortinet",
"website": "https://www.linkedin.com/company/nextdlp/"
},
{
"company": "Acano",
"endDate": "2017-05-31",
"highlights": [],
"position": "Founder & Chief Security Officer",
"startDate": "2013-12-31",
"summary": "Leader of security efforts. Founded PSIRT. Guided product through US Federal evaluations (JITC).\n\nDual role as head of systems programming. Responsible for embedded software, manufacturing tests and software build system.\n\nManager of a team with hands-on programming in the mix. Acquired by Cisco",
"website": "https://www.linkedin.com/company/acano/"
},
{
"company": "Acano",
"endDate": "2013-12-31",
"highlights": [],
"position": "Founder & Systems Engineer",
"startDate": "2012-02-28",
"summary": "Systems software engineer and security specialist. Low-level hardware bringup, custom Linux distribution maintainer, build system owner. Built something from nothing",
"website": ""
},
{
"company": "Cisco Systems",
"endDate": "2012-02-28",
"highlights": [],
"position": "R&D Security Engineer",
"startDate": "2010-04-30",
"summary": "Design and implementation of security features for telepresence infrastructure products. Specialism in kernel and network stack development.",
"website": "https://www.linkedin.com/company/cisco/"
},
{
"company": "Tandberg (Acquired By Cisco)",
"endDate": "2010-04-30",
"highlights": [],
"position": "Systems Engineer",
"startDate": "2007-09-30",
"website": "https://www.linkedin.com/company/cisco/"
},
{
"company": "Codian (Acquired by Tandberg)",
"endDate": "2007-09-30",
"highlights": [],
"position": "Systems Engineer/Manufacturing Test Automation",
"summary": "Video conferencing startup. Acquired by Tandberg",
"startDate": "2006-08-31",
"website": "https://www.linkedin.com/company/codian/"
},
{
"company": "University of Glasgow",
"endDate": "2001-10-31",
"highlights": [],
"position": "Summer Research Student",
"startDate": "2001-05-31",
"summary": "Mathematical modelling applied to problems in medicine.",
"website": ""
}
],
"volunteer": [{
"organization": "Intergenerational Mentoring Network",
"position": "Mentor",
"url": "https://intergenerationalmentoring.com/",
"startDate": "2022-12-22",
"summary": "Mentor to two bright young people from Easterhouse who want to start careers in high technology"
}],
"education": [
{
"institution": "University of Strathclyde",
"area": "Mathematics",
"studyType": "PhD",
"startDate": "2003-12-31",
"endDate": "2006-12-31",
"gpa": "",
"courses": []
},
{
"institution": "University of Strathclyde",
"area": "Mathematics",
"studyType": "BSc (Hons) First Class",
"startDate": "1996-12-31",
"endDate": "2001-12-31",
"gpa": "",
"courses": []
},
{
"institution": "Queen's University",
"area": "Mathematics",
"studyType": "Exchange program",
"startDate": "1998-12-31",
"endDate": "1999-12-31",
"gpa": "",
"courses": []
}
],
"awards": [],
"publications": [],
"skills": [
{
"name": "Security Processes",
"level": "Expert",
"keywords": [
"Threat & Vulnerability Management",
"Incident Handling",
"Penetration Testing",
"Secure Code Review"
]
},
{
"name": "Industry Standards",
"level": "Battle-Hardened",
"keywords": [
"FIPS 140-2",
"ISO 27001 Lead Implementer",
"GDPR"
]
},
{
"name": "US Federal Market Compliance",
"level": "Multi-million Dollar Successes",
"keywords": [
"JITC",
"APL",
"DoD"
]
},
{
"name": "Golang",
"level": "Expert",
"keywords": [
"Systems Code"
]
},
{
"name": "C",
"level": "Veteran",
"keywords": [
"Embedded Systems",
"Kernel Drivers"
]
},
{
"name": "C++",
"level": "10+ years",
"keywords": [
"Systems Code"
]
},
{
"name": "Scripting Languages",
"level": "10+ years",
"keywords": [
"Ruby", "Python", "Lua", "Bash"
]
},
{
"name": "Frontend Web Technologies",
"level": "Code Reviewer",
"keywords": [
"Javascript", "Typescript", "Elm", "Angular", "React"
]
},
{
"name": "Cloud Native Technologies",
"level": "Expert",
"keywords": [
"Docker",
"k8s",
"Terraform"
]
},
{
"name": "Secure coding",
"level": "Evangelist",
"keywords": [
"SDL",
"CERT-C",
"OWASP"
]
},
{
"name": "Cryptography",
"level": "Enough to be Dangerous",
"keywords": [
"Applications",
"Vulnerability Auditing"
]
},
{
"name": "Reverse Engineering",
"level": "Always Practicing",
"keywords": [
"r2",
"ghidra",
"angr",
"assembly language"
]
},
{
"name": "Fuzzing",
"level": "Expert",
"keywords": [
"afl",
"golang",
"c",
"custom frameworks"
]
}
],
"languages": [
{
"language": "English",
"fluency": "Native Speaker"
},
{
"language": "Dutch",
"fluency": "Fluent"
},
{
"language": "German",
"fluency": "Beginner"
}
],
"interests": [],
"references": []
}
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment