pdf version: Dr_Christopher_Betts.pdf
mobile: 0408 533 456
home: 03 9751 0115
word version: Dr_Christopher_Betts.docx
Highly qualified Senior Architect with 15 years commercial experience in the enterprise Identity and Security computing fields. Has successfully designed, implemented and delivered numerous complex projects including Identity Transformation and Cloud Enablement, and managed teams in both small and large organisations.
Combines a deep understanding of the technical foundations of Identity and Security with the stakeholder communication skills required for project success.
Regular speaker at conferences and trade shows. Originally from a strong research background with a BSc(Hons), a BEng(Hons), a PhD, and a number of academic prizes. Has good spoken communication skills, whether presenting to operations staff or the board of directors, and good written skills, from detailed technical architecture through to strategic roadmaps or corporate communications.
Key technical expertise with Architecture (ITIL, TOGAF etc.), Identity (Open source, NetIQ and CA products), Security (PKI, SSL, SPML...), Directory (LDAP, X500, JNDI...) and Web Services (XML, UDDI, SAML, XKMS ...).
Recently became CTO for Australian Cloud Identity (ACI), a specialist Identity consultancy based in Melbourne Australia, and is available for consulting work through ACI.
Australian Citizen with U.K. Residency. Does not have a U.S. Green Card, and while travel and remote work are welcome, for family reasons is not interested in permanent work in the US.
Experienced IT professional with current architecture, design, coding and project management experience. Skilled in Identity and Access Management (IAM), Security, Cloud technology, Web Services, Scientific/Numerical Programming and Directory Technology, with over two decades of programming experience.
Accomplished speaker and communicator, with experience presenting and advising C-level staff and creating, driving and implementing organisational strategy and change.
Comfortable in both enterprise and start up environments, with experience in a range of SDLCs including Traditional and Agile. Personal and managerial experience of all the aspects that make a program outstanding, from strategy and business case preparation, through requirements gathering, technical design, implementation review, testing and deployment, training materials, visual aids, marketing collateral, online help, internationalisation, installation packaging, executive presentations, performance testing and so on.
Technical leader familiar with creating and driving technical change and innovation. Author of numerous patents, technical and academic papers, and creator of a number of commercial and open source software products.
Identity (10) Cloud (10) Security (9) Scientific Simulation (8)
Familiar with many other java based technologies and many standard tools, especially the open source family: Apache, Axis, Tomcat, junit, cvs, svn, ant, maven, log4j, etc.
Here is a short summary of searchable keywords with a rough competency rating from 1-10:
LDAP (10) HTML (9) XML (9) DSML (9) JNDI (9)
SAML (7) XACML (7) OAuth (7) SVN (7) Velocity (7) PHP (7)
Familiar with Java, Perl, PHP, Pascal, Basic, Fortran, C++, etc.
Mac OSX (8) Windows (7) Solaris (7) Linux (7)
Architect (10) Strategist (10)
Presenter (9) Internal Sales (9)
Developer (8) Documentation Writer (8) Project Manager (8)
Mentor (8) Trainer and Educator (8)
Responsible for guiding strategy and design for our customers, focussing on enabling reliable cloud service deployments for large, heterogeneous organisations.
ACI has specialist expertise in large, complex identity and cloud access programs. The CTO's role is to give to our customers a clear view of the benefits to business and staff of Identity uplift, a pragmatic roadmap to how to achieve those benefits, and the designs to actually execute on the technical work required.
As part of ACI's commitment to growing the field of Identity technology, is continuing to develop and support the open source 'JXplorer' LDAP browser, which has now been downloaded over 2 million times, and is bundled with many Linux distributions.
Stream Architect for Identity transformation program. Refactored and integrated the Victorian State Government identity stack in a 4 year, $14m program of work. The program created a whole of government 'internal cloud' directory, implemented a common user provisioning and workflow platform, and consolidated/implemented multi-factor security, web access security, mobile device enablement and cloud security.
7 departments, including the Departments of Treasury and Finance, and of Premier and Cabinet, along with many agencies, were fully integrated, and 3 more departments were partially integrated.
This work not only saved millions of dollars by streamlining and decommissioning legacy environments, it also enabled Cloud services to be seamlessly and securely integrated into the staff working environment, even raising the security posture of otherwise less secure cloud services as necessary.
Chris was the lead architect, responsible for overall strategy, roadmap, design and much of the detailed technical work, as well as business briefs, a degree of legal and compliance analysis, policy development and, on occasion, program management. In addition he chaired the CenITex Technical Architecture Board, ran regular training seminars, and assisted with service definition and pre-sales exercises.
The program was completed with all major objectives achieved in 2013.
(ITIL, JNDI, LDAP, Novell eDirectory, Active Directory, Citrix 'CAG's, Desktop SSO, Novell NSL, ISO 27001/2, PSM/ISM / PSPF, IPP 2001, PKCS 11).
Architect for Identity Management, Shared Services, Security, CMS, Transaction
Technical leadership of the Sensis-wide Shared Services and Services Oriented Architecture Project.
Originally employed as architect and technical lead on Sensis Identity project, implementing the Sun Identity Stack (Directory, Access Manager, Identity Manager) as a Web Access Control Solution, including Cross-Domain Single Sign-On (CDSSO). Designed and trialled OpenID and Identity web service (SPML) solutions, and helped maintain existing CA Siteminder installation.
Later projects include SOA infrastructure with BEA(Oracle) Aqualogic, Facebook integration, installing and administering Atlassian Confluence (which grew to 1,500+ users), and various commercially confidential projects, ending with a role as Sensis Content Architect and technical liaison between Sensis, Telstra and Big Pond.
• Architecture and implementation of Sensis Identity Solution.
• Technical and Code review of existing White and Yellow Pages search and content engines
• Successful Establishment of 1,500+ user Sensis-wide wiki
• Senior technical advisor for Sensis SOA implementation & repository.
• Co-developed a number of business cases.
• Permanent member of both Sensis and Telstra Design Authorities
(JNDI, LDAP, Tomcat, Servlets, CSS, Ruby on Rails, OpenID, Enterprise 2.0,CMS, SOA, FAST)
Working on bioinformatics systems with the Monash Department of Biochemistry and Molecular Biology Protein Folding Group. Lead for global protein folding database.
(PHP, MYSQL RDBMS, R STATISTICS, NUMERICAL PROGRAMMING)
Architecture and consulting work on a variety of smaller LDAP/Identity / J2EE projects in the Identity, Security and Social Networking Spaces. (Pegacat began trading as 'Australian Cloud Identity' in 2012).
•Active Directory to Cloud software connector for major US Cloud firm.
• Subcontractor for Indian Space Agency Directory Project
•Identity Integration consultant for Maplesoft Educational Software
•Secure X-Ray Imaging Pilot for Alfred Hospital
•Mapping Applet for PelicanCorp 'Dial before you Dig' project
•Secure Social Networking Site based on LDAP Directory - Pegacat Software 'netmynd.com' project
•Built and maintained JXplorer LDAP open source client (2 million+ downloads)
(JNDI, LDAP, Velocity, Tomcat, DICOM, CSS, PHP, OpenID, REST, SSL, LDAPS, ASN1, X509).
ARCHITECT: Web Services Security/ Transaction Minder (2004 - 2005)
PROJECT MANAGER: Web Services Infrastructure (2002 - 2003)
PROJECT MANAGER: eTrust PKI / OCSPro (2001 - 2002)
ARCHITECT/DEVELOPER: Java Directory Projects (1999 - 2001)
Initially recruited as a senior java developer/designer working on a variety of eTrust Directory projects. Moved to manage a pair of security products (eTrust PKI and eTrust OCSPro), both of which were delivered on schedule in 2002. Moved again to take over the early web services infrastructure projects and start-up web services security within CA. Final project was managing incremental releases of CA TransactionMinder (Web Security Siteminder module).
Technical focus was on Java, and related tools such as junit, log4j, tomcat, axis, and various XML toolkits (Apache, Sun's JWSDP etc.). Heavy exposure to Directory technology (X500, LDAP, JNDI), Security technology (PKI, public/private key crypto, SSL, GSSAPI, Kerberos) and web services (JWSDP, XML, XACML, XKMS, UDDI, DSML, SAML, SPML, WTFML).
• Manager and Technical Lead of Siteminder web services security module.
• Lead Architect and Project Manager for the eTrust Web Services Security project.
• Managed and co-developed a UDDI server (v1, v2 & v3), a DSML server, a SAML//XACML server, and toolkits for working with SPML, SAML and XKMS.
• Managed a twelve person security team developing Public Key Infrastructure product (eTrust PKI) - version 2.0 delivered on schedule in 2002.
• Managed maintenance release of Online Certificate Status Protocol server (eTrust OCSPro) and first cut of eTrust ETPKI, a general purpose cryptography library.
• Steered Computer Associates first open source product to release (the JXplorer LDAP client : http://jxplorer.org), and led the open source team maintaining it on Sourceforge.
• Numerous side projects involving web services, directories and security, including marketing collateral, tender documents, client presentations, conference presentations, etc.
• Introduced unit testing and automated system testing, applying junit to above projects, and ran seminars on refactoring, java performance and other technical topics.
• Introduced internationalisation (i18n) toolkits and methodologies.
Technical lead on internet managed product kiosk: Zoom Systems. Work involved heavy Java networking and GUI development (Java, JDBC, Swing, RMI, HTML), as well as creating and being DBA for an Oracle database (SQL, Oracle).
LookSmart peaked at a market cap of $5B, and was a trailblazer in the internet search space.
Design and implementation of a test system for a vehicular controller/telemetry unit for Melbourne Trams, using C++. The project was designed and co-written with a single associate (Zik Saleeba). It involved writing a Turing-complete test language, some hardware work, and complete user, program and technical documentation. The project was finished ahead of schedule.
C, C++ programming for an on-the-spot licence system, interfacing with the RTA's Drives System. The product photographed the licensee, took their details and produced the final drivers licence. This product now used by the South Australian RTA, and similar systems are in use across Australia. Developed UI, graphics and documentation, as well as code for hardware I/O and utilities.
Research Fellow working on statistical analysis and report preparation using SPSS / Quattro Pro.
Research Assistant working on preparation, analysis and reporting of survey data using SPSS.
General programming for the Microcraft "AUTHOR" Computer Based Training (CBT) and Computer Managed Learning (CML) project. Wrote a windowed, networked database student management program using several versions of BASIC and Visual Basic, using Microsoft Programmer's Workbench, DBASE, FOXBASE and Delphi.
Work involved development of a content management system (CMS) writing database utilities, graphic design, graphics utilities and windowing utilities, including low level mouse handling, button/ edit field creation etc., in DOS BASIC. Essentially the project was writing a "Visual Basic" equivalent in the days before Visual Basic was available, aimed at educators.
In 1993 designed and managed a complex report writing utility. Four person team finished early.
Wrote a Primos print file to word perfect conversion utility.
Wrote historical weather data conversion/numerical programs using FORTRAN and JCL.
• Monash University 1989 - 1995: Tutor/ Mentor, Dept. Computer Science & Engineering.
• Monash University 1992: Visual Basic/ SQL Software Developer.
• M-Dec Cabling Pty. Ltd. 1992: Turbo-Pascal Programmer and Systems Administrator.
• Equinet 1989: Emergency/Weekend Mainframe Operator for financial services company.
• Ren-Master 1989: XENIX Software Maintenance for medical services firm.
• Glen Waverley High School 1983: Educational Software in Basic
Initially completed a five year double degree in science and engineering. Returned a couple of years later to do an honours year in computer science and then a PhD (completed part time while employed).
• 2000: PhD Computer Science (with a bioinformatics component)
Thesis topic: "Nanosimulation of the Cytoskeleton"
• 1993: BSc.(Hons, 1st class) Computer Science
Thesis topic: Real-Time Simulation of Special Relativity"
• 1992: Graduate Diploma, Asian Studies
• 1990: B.Eng.(Hons) Electrical Engineering
Thesis topic: "Catastrophic Superconductor Breakdown"
• 1988: BSc. Maths/Physics
• Computer Science Honours Thesis, rated best of the year 1993
• Graduated 2nd in class, Monash Dept. Computer Science 1993
• Control Data Corporation Prize for Best Computer Engineering Student (1989)
• Electrical Engineering Honours Thesis rated in top three, submitted for IEEE world prize.
• Various school prizes.
Written in C++, under IRIX 5.3 on an SGI Indigo2 graphics workstation. The Thesis involved simulating the 'self assembling' behaviour of very small particles, concentrating on a related group of plant cell protein structures (actin filaments, microtubules, plasmodesmata and viral proteins).
The work involved writing 3D model viewers, image processing modules, modelling and scripting languages, and protein assembly simulators, as well as various numerical routines, class libraries for fast graphics, fast vector mathematics and fast 3D modelling.
This work has been presented at a number of international and local scientific conferences, and involved public speaking and a great deal of writing. The full Thesis is published on the web, and is on line at the 'Nanosimulation of the Cytoskeleton' web page.
A real-time relativity simulator written in C++ which was three orders of magnitude (1000 times) faster than the fastest previous simulator (published in the Journal of Visualisation and Computer Animation).
The work foreshadowed some aspects of the recent game from MIT "A Slower Speed of Light", released in 2012 almost twenty years later, with graphics hardware thousands of times faster than that available in 1993!
Presented at various International Academic and Industry Conferences, including RSA Show, Asia Pacific PKI Forum, CA World and CA Expo. A partial list of conference presentations, academic articles and technical notes is available on request.
Software patents are a regrettable cost of doing business in the U.S. In order to defend against unscrupulous litigators, it is a requirement in leading edge R&D to file patents that document a project's progress.
The following 23 patents have been filed during work with CA.
• Fast Directory Searching using Concatenated String Values of Child Entries
• Automatic XML Validation Handling of Unimplemented Code
• Customer Detail Publication in an Internal UDDI
• Simplified Retrieval and Sorting from a Directory Using Sequential Entry Names
• Automated Patching of Code into XML Schema Derived Java Classes
• Web Service Address and WSDL Translation via an Intermediary
• Efficient Storage of XML in an LDAP or X500 Directory
• Using Casting Errors and Automatically Generated Code to Simplify a Server
• Automatic Validation Handling of Unimplemented XML Code
• UDDI challenge response Security Authentication
• SPML implemented on Directory
• Supporting Multiple Versions of UDDI via Fast-Find Indexing
• A UDDI Proxy for Non-UDDI Aware Applications
• UDDI Proxy for Balancing Load Requests and Fail-Over
• A Method of Storing a Multipart XML Document
• A Layered Architecture for Web Services Firewalls
• A Web Services Firewall as a Hardware Appliance
• A Method for Automated Testing of XML Servers
• Automated Creation of Web GUIs for XML Servers
• Automated Creation of HTTP to XML Translation Servers
• Automated creation of Model and View code from XML Schema
• Cascading Configuration Using Multiple Configuration Trees
• Distributing Software Elements via Cascading Configuration
The following 2 patents have been filed in support of recent Start-up work with ACI.
• A System for Re-entrant Collaborative Polling with Notifications (for 'FriendHerder')
• A Hierarchical System for Knowledge Management (for 'NetMynd')
Founder and Lead Developer on the JXplorer Project (http://jxplorer.org). JXplorer is an advanced open source LDAP browser and administrative tool with a large feature list and flexible architecture. Responsible for maintaining the JXplorer web site and the JXplorer sourceforge repository. JXplorer has been very successful, and has steadily increased its downloads since first launching and reached 2 million manual downloads by early 2013, and is bundled with many Linux distributions. It has also been translated into six languages including Chinese.
Also writes code for a non-commercial computer game - 'Voyager', which pre-dates the Star Trek series of the same name, and has been in continuous development for over twenty years. Voyager is a multi-player galactic conquest game written by a group of friends. Wrote the alien race generation GUI and the spiral galaxy star map generator, as well as a pluggable client framework.
Currently technical lead for two small, but potentially commercial, Start-ups.
http://www.netmynd.com is a java based web 2.0 social networking project based on a hierarchical wiki data model with security, ratings, cascading configuration and an extensible programming model.
FriendHerder is a simple PHP based social organiser, extending the concepts of programs like Google calendar to cover generic agreement or voting on topics of interest (such as "which film will we see tonight?'').
Implemented and maintains the following Unicode ancient language web sites:
• Teach Yourself Ancient Greek (http://tyancientgreek.org)
• Teach Yourself Latin (http://tylatin.org)
The work involved heavy use of Unicode and Perl, including automated translation of a proprietary ancient Greek text base into 150+ pages of formatted HTML.
When not coding, or wrestling small children, is a keen reader, writer, roleplayer, carpenter and clock maker. Has built from scratch a number of complex mechanical clocks of which he is inordinately proud, and a large quantity of wooden bookcases, beds, tables and so on, of more variable quality. Very occasionally manages to find the time to go flying or diving. Also working on the great Australian novel, release date and publisher yet to be announced.
• Australian Driver's Licence
• Australian Private Pilot's Licence
• Open water SCUBA licence
• Australian Passport (U.K. permanent residency)
Available for contract and consulting work through ACI, specialising in the overlapping areas of identity, security, cloud, java, directories, and web services.
Contact ACI for rate information.
(These must not be contacted without first informing me). Other referees available on request.
Mr. Scott Thomson
Head of Digital Strategy
(ex. CA eTrust Chief Architect)
Mr Tim Bentley
Project Manager and Architect
(ex PM eTrust Web Services)
Dr. Damian Conway
Dept. of Computer Science
Dr Ashley Buckle
Dept. of Bioinformatics