Electronic Messaging & Collaboration Technology Expert Witness

DevOps, DevSecOps, DHCP, Digital Research DOS, directory services, distributed systems, Disk Operating System, DNS, Domain Name System, DOS, DR DOS, Dynamic Host Configuration Protocol, eDiscovery, email migration, email routing, Ethernet, EtherTalk, Eudora, firewall, governance, GRC, groupware, HP Palmtop, HTTP, HTTPS, Hypertext Transfer Protocol, IaaS, IaC.Identity management, Identity Provider, IdM, IEEE 802.3, IMAP, IMAP4, Infrastructure as a Service, Infrastructure as Code, InstallShield, instant messaging, Internet Mail Access Protocol, Internet Protocol, iPlanet, IPX/SPX, Java Enterprise System, JES, Apache Kafka, LDAP, LDAP Data Interchange Format, LDIF, Lightweight Directory Access Protocol, LocalTalk, Lotus Development, Lotus Domino, Lotus Notes, Livingston Portmaster, Mac OS, Macintosh, Macintosh System 6, Macintosh System 7, messaging, microservices, Microsoft Exchange, Microsoft Windows, MIME, mobile applications, Multi-part Internet Mail Extensions, Netscape, Netscape Calendar Server, Netscape Directory Server, Netscape Mail, Netscape Messaging Server, Netscape Navigator, Netscape SuiteSpot, NetWare, network analyzer, Network File System, Network Operating System, NFS, NOS, Novell MHS, OAuth, OIDC, Open ID Connect, Oracle Database, Oracle Cloud, Oracle Unified Communications Suite, OS/2, OS/2 Warp, OSI Model, packet capture, Packet Switched Network, Palm OS, Palm Pilot, PC/TCP, performance, PKI, POP3, Post Office Protocol, Proofpoint, Public Key Infrastructure, Python, Raima Database, Red Hat Linux, Redis, regulatory compliance, Responsible AI, risk management, router, SaaS, SAP SuccessFactors, scalability, security, sendmail, shell scripts, Short Message Service, Secure Sockets Layer, Simple Mail Transfer Protocol, smartphone, SMS, SMTP, software architecture, Software as a Service, software engineering, software startups, Solaris, SSL, Steltor, Sun C2MS, Sun Microsystems, Sun ONE, TCP/IP, Terraform, TLS, Transmission Control Protocol, Transport Layer Security, UCS, unified communications, Unix-to-Unix Copy, UUCP, virtualization, VMware, WAP, Windows 3.0, Windows NT, Windows Server, wireless, Wireless Application Protocol, wireless messaging, X.25, X.400, X.500, X.509.

Summary

This Expert is a seasoned software industry leader based in Silicon Valley, California with a proven track record driving innovation and leading large-scale SaaS implementations and transformations in global organizations. This Expert has experience founding and scaling B2B SaaS startups and working in large, global SaaS companies. This Expert’s experience includes software and system architecture, design, engineering, continuous delivery, operations, and security, as well as governance risk management, and regulatory compliance (GRC), for service providers and enterprises in multiple industries. This Expert has management experience building and leading global and cross-functional teams, accelerating product development, and fostering a culture of continuous delivery and innovation.

This Expert is adept at translating complex business needs into product and technology roadmaps, embracing strategic cutting-edge technologies, empowering teams to deliver exceptional value to customers, and in the art of communication and collaboration with stakeholders at all levels, from rank-and-file engineers to C-level executives and board members.

This Expert has worked in the software industry in Silicon Valley for more than three decades, including notable startups cc:Mail (acquired by Lotus Development then by IBM), Netscape (acquired by Sun Microsystems and AOL), and Proofpoint (NASDAQ:PFPT), and global technology giants Cisco (NASDAQ:CSCO), Oracle (NYSE:ORCL), and SAP (NYSE:SAP).

Among other areas of expertise, This Expert is an expert in messaging and collaboration technologies, including but not limited to email, instant messaging, wireless messaging, calendaring and scheduling, directory services / identity management (IdM), and groupware, along with underlying technologies used by these services. This Expert has hands-on experience in related database technologies, server-side implementations, client-side web, mobile and desktop applications, as well as in related network and application protocols, data formats, industry standards, open Internet standards, and related security and cryptography technologies.

This Expert is able to reconstruct point-in-time messaging and collaboration systems, and other systems that operate over computer networks, with forensic accuracy in isolated laboratory settings reflecting real implementations or specific scenarios relevant in intellectual property (IP) litigation or other matters, e.g., related to patent claims or other evidentiary issues. Using live point-in-time systems, This Expert can exactly reproduce or directly prove or disprove claims related to the operation of software and systems that operate over computer networks, or related to forensic evidence or to data produced by such systems.

This Expert can demonstrate prior art, explain evidentiary inconsistencies, and determine whether or not evidence is manufactured or has been tampered with. This Expert has written a number of data conversion, data recovery, data migration, and computer forensics tools and, in more than one instance, has recovered data from raw binary files or has restored systems to operation from partial backups which relevant software vendors or other experts deemed impossible. This Expert has used brute force methods to crack passwords along with other hacking techniques, e.g., breaking into restored systems where credentials were lacking in order to obtain specific evidence. This Expert can create functioning technology trial exhibits that can be operated by attorneys or by testifying experts, e.g., to demonstrate prior art related to specific patent claims.

This Expert has worked as an undisclosed expert consultant on a number of IP litigation cases, including high profile cases, mainly for legal firms based in Silicon Valley or New York. Additionally, This Expert has been professionally coached as an expert witness, has testified at trial, has been deposed, has written expert opinion letters and reports, and is a qualified expert witness in the state of California.

Experience

Consultant 2024 – present
A private Company, CA
Responsible AI consulting and professional services
• AI governance, risk management, and compliance (GRC) consulting
• AI compliance strategy and posture management for enterprises in multiple industries
• Deep research on AI security, safety, privacy, fairness, and transparency
• Ongoing analysis of legal and regulatory landscape pertaining to uses of AI technology

Chief Architect, Learning (CTO Office) 2021 – 2024
SAP SuccessFactors Palo Alto, CA
Global leader in Software as a Service (SaaS) for human capital management
• Interim VP of Engineering for 80-person engineering team during 90-day leadership transition
• Application modernization for legacy Java/Tomcat/HANA stack (k8s, Kafka, Redis, Elastic)
• Created strategy for realtime data everywhere and launched new microservices
• Ensured secure cross-product integration using SAML, OAuth 2.0, OIDC, and mTLS
• Collaboration with BISO team on threat modeling and vulnerability management
• Spearheaded deep learning recommendations using Databricks and SAP AI Business Services
• Defined multimedia “smart search” streaming architecture using Google Vertex AI (Gemini)
• Analyzed product overlap and recommended profitable sale of Litmos to private equity buyer

Senior Director, Cloud and Cybersecurity 2019 – 2021
Capgemini Santa Clara, CA
Multinational information technology consulting services company
• Created cloud native re-engineering and SOC 2 and GDPR technical readiness offerings
• Handled DevSecOps as a Service and GRC RFx for global clients in multiple industries
• Led scaled Agile Framework (SAFe) projects in software, manufacturing, automotive, et al.
• Instrumental in Global Service Lines revenue growth from $10M to $40M in less than 2 years
• Contributed to record annual performance including $1.5B pharmaceuticals industry win

Co-Founder and CEO 2018 – 2019
Basil Security Atlanta, GA
Developer of blockchain based policy enforcement product to replace jump boxes

• Created product roadmap for stateful ABAC (NIST SP 800-162) security policy system
• Lead team developing Python/Rust policy product (PAP, PDP, PEP) to replace jump boxes
• Created declarative policy programming language based on HashiCorp Config Language (HCL)
• Gathered requirements from Fortune 500 CISOs, CTOs, as well as U.S. government military
• Set up company and advisory board, handled IP, seed investment, and customer PoC projects
• Launched product at 2019 RSA Conference, 6 months after incorporation

Head of infrastructure, Operations, and Information Security 2017 – 2018
Pivotus Menlo Park, CA
Developer of personal banking SaaS application for retail banks
Hired by company founders as Employee #1 for enterprise SaaS and served as interim CTO
Strategy for encryption, IdM (OAuth 2 and OIDC), and cloud native (AWS, microservices, k8s)
Event streaming CQRS application (Akka actor model, Java, Scala, React, and React Native)
Created and implemented ITIL ITSM and NIST CSF information security program
Architecture and Agile development for SOC 2 and GDPR controls, observability, and audits
Built DevSecOps and security teams to handle vulnerability management and incident response
Worked directly with financial services security teams, C-level executives, and boards
Handled customer audits, 3rd-party vendor due diligence, and SOC 2 attestation

Chief Architect, Collaboration Cloud 2013 – 2017
Oracle (Communications Global Business Unit) San Jose, CA
Multinational computer technology company
Built and managed global teams in US, Europe, China, and India to deliver new SaaS offering
Supported strategy and execution across engineering, product, sales, and marketing
Technical owner of end-to-end architecture, infrastructure, security, monitoring, and ops
Solved problems across security, engineering, quality assurance, and support
Integrated 20 C/C++ and Java Oracle products, built CI/CD pipeline and operational systems
Delivered end-to-end automaton using Chef with custom Ruby libraries and Python
Evangelist for cloud collaboration, speaking at events, and working with partners
Coordinated with security team on threat modeling and security reviews
Successfully obtained Corporate Security Architecture Review Board (CSARB) approval

Senior Manager, Customer Business Transformation 2010 – 2011
Cisco Systems (Collaboration Software Group) Santa Clara, CA
Multinational digital communications technology conglomerate

Developed revenue-generating services in collaboration with Advanced Services team
Led on-premises to SaaS migrations for early adopters and marquee accounts
Tested and documented C/C++ migration tools and procedures for customer consumption
Discovered and surfaced architectural flaws resulting in Cisco Mail product cancelation

Founder and CEO 2003 – 2010
Global System Services Mountain View, CA
Consulting and professional services company focused on Sun Microsystems, Inc.
Built practice groups for communications, GRC, grid (cloud) migration, and migration tools
Grew top line profitability and scope of services for 7 consecutive years
Reached highest-level Sun partnership (SMCA), Principal ISV Developer, Approved Sun Vendor
Wrote C/C++ data recovery, conversion, migration, and computer forensics tools
Clients included Proofpoint, Pemex, US Air Force, USPS, IRS, and others

Contractor (while at GSS) 2003 – 2005
Proofpoint Sunnyvale, CA
Enterprise cybersecurity software company and SaaS provider
Worked closely with founding team providing product input and early customer feedback
Pre-sales engineer for email security, data loss prevention, and regulatory compliance
Worked with enterprise customers to enforce HIPAA, SOX, and PCI DSS regulatory rule sets
Hands-on Sun Solaris (UNIX) and Red Hat Linux expert on Proofpoint Protection Server (PPS)
Set up test lab, wrote automation scripts, and performed competitive benchmarks
Analyzed competing products and wrote competitive analyses incorporating test results
Supported Fortune 500 customers and managed global PPS appliance upgrade project

Director, Product and Technology Strategy 2000 – 2003
Fremont, CA
Developer of mobile application development platform, mobile apps, and mobile application server
Supplied IP from 3minder and wrote combined patent application
Wrote and maintained master Technology Roadmap document for company
Worked with CEO and founding team to raise $12.5 million in venture funding
Presented company, technology, and products to investors, customers, and partners
Managed cross-functional team to deliver Movera Studio product suite
Designed UIs for J2EE Java Servlet-based wireless LDAP/IMAP WAP client applications
Built channel with wireless modem makers and service providers on API integration
Handled business partner programs with Sun, IBM, BEA, and Openwave

Founder and CEO 1999 – 2000
3minder (sold to ClickServices.com) Mountain View, CA
Developer of iThing converged wireless device and wireless/internet message switch
Invented and designed wireless/Internet message switch and tested prototype modules
Co-founded company to create converged mobile device similar to iPhone
Developed downloadable Virtual Wireless Devices (similar to mobile apps in an app store)
Negotiated acquisition of company by ClickServices.com

Professional Services Consultant 1995 – 1999
Netscape Mountain View, CA
Internet software startup (inventor JavaScript, HTTP cookies, and secure sockets layer)
Pre-sales consultant to Netscape Professional Services on large competitive enterprise deals
Professional services consultant for large-scale Netscape SuiteSpot solutions
Capacity modeling, workload simulation, benchmarking, test automation, and load testing
Application and server operating system performance tuning on HPUX and Solaris
Worked directly with customers on major project, e.g., Bell Canada, Motorola, and NTT Verio

Consultant 1995 – 1999
Self Employed Mountain View, CA
Messaging and collaboration consultant to large enterprises
Consultant to enterprise IT customers on messaging and collaboration technology strategy
Configuration and security auditing, including Automatic Directory Exchange (ADE) and X.500
Troubleshooting, database repair, and message route optimization
Supported cc:Mail, Lotus Notes, and other systems, as well as MHS, UUCP, and SMTP
Migrated customers from legacy systems, e.g., IBM PROFS, to cc:Mail or Lotus Notes

Senior Software Quality Engineer 1994 – 1994
Lotus Development Mountain View, CA
Enterprise software company
Lead Engineer, Engineering Services Compatibility Test Group
Supervised SQA contractors, automated testing, and report generation
Responsible for Internet email product SQA (testing) through FCS/RTM
Adapted IEEE standards-based QA test plans to company SDLC
Testing of various LAN topologies, drivers and Network Operating Systems
Used network analyzers to analyze IPX/SPX and TCP/IP protocol issues
Wrote installers and contributed substantially to product documentation
Go-to expert in TCP/IP driver stack configuration and Internet tools

Senior Escalation Engineer 1991 – 1994
cc:Mail (acquired by Lotus Development) Mountain View, CA
Developer of award-winning enterprise email software
Product Line Consultant and Team Lead for UNIX gateway and MIT X Window System products
Technical backup for Support Engineers responsible for large enterprise email systems
Developed and presented technical training on TCP/IP and UNIX
Responsible for cross-platform NFS testing on Sun SPARC (Solaris) and RS6000 (AIX) servers
Developed very large scale email messaging routing algorithm (Ricochet Routing)
Contributed to strategic database task force reporting to Chief Scientist Hubert Lipinski
Worked with marquee customers such as Intel, US West, Motorola, GE, and others
Key resource for inside sales directly contributing to several large, strategic wins
Exclusive support contact for industry analysts and members of the press

IT Manager 1990 – 1991
Fenwick & West Palo Alto, CA
Corporate, intellectual property, litigation, regulatory, and tax law firm based in Silicon valley
Researched and proposed IT strategies for networking and office automation
Recommended products, managed vendors, and handled purchasing
Designed and installed Ethernet/EtherTalk and LocalTalk internetwork
Purchased, installed and administered NetWare 2.x and AppleShare file and print servers
Administered and supported cross-platform Lotus cc:Mail e-mail system
Installed, configured, and administered network routers and e-mail gateways
Installed, configured, and administered Shiva remote access products for dial-up access
Wrote scripts to automate ITC/OTC database MS Windows 3.1 integration
Wrote end-user procedures and training materials, and IS department documentation
Developed and presented end-user microcomputer, LAN and e-mail training
Worked with attorneys and experts to support intellectual property litigations

QA Contractor 1989 – 1990
Matthew Bender San Jose, CA
Software development and testing company
Created test plans and wrote scripts in proprietary scripting language
Automated tests using Brief editor macros and MS DOS batch language
Performed functional testing of tax accounting forms database

Support Engineer 1989 – 1989
DynaWare Foster City, CA
3D CADD software company
Tested and debugged DynaPerspective for Windows and Macintosh
Supported beta testers of DynaPerspective 3D CADD and wrote release notes
Tested, debugged, and disassembled printer and plotter drivers
Built RS-232 serial ables for printer and plotter testing
Video card and related VGA/SVGA driver testing

Education

BS, Santa Clara University MLA, Stanford University
UC Berkeley Extension, computer science
Ongoing university-level online learning, computer science
Regular attendance at industry trade shows, conferences, and other events

Certifications

Certified Information Systems Security Professional (CISSP), 2021 AWS Certified Cloud Practitioner certification, 2019
Previous certifications included Certified Lotus Professional CLP, Microsoft Certified Professional MCP, and Certified Enterprise Messaging Consultant

Associations

Senior Member, Institute of Electrical and Electronics Engineers (IEEE), elevated 2019 Senior Member, Association for Computing Machinery (ACM), elevated 2014 Professional Member, Information Systems Audit and Control Association (ISACA)

Speaking Engagements: Available upon request. 

Publications: Available upon request.