Rudolph serves as a Principal Software Security Consultant and Trainer. Rudolph is responsible for creating and delivering the threat modeling and security code review service lines. He is also responsible for content creation and training delivery for Foundstone's Building Secure Software and Writing Secure Code - ASP.NET and C++ classes. Rudolph's code review experience is varied and includes among others custom operating system kernels, hardware virtualization layers, device drivers and user-mode standalone, client / server and web applications.
Rudolph has a solid background in computer science fundamentals and many years of software development experience on UNIX and Windows at all levels of the application stack. Prior to joining Foundstone, Rudolph led the checks development team for BindView's (now a part of Symantec) bv-Control for Internet Security, a vulnerability assessment product. In his role as lead developer, Rudolph collaborated with a global team in creating updates to the product, which scanned for the presence of vulnerabilities as they were released.
Rudolph has also worked as a software developer at Morgan Stanley, where he was responsible for creating Microsoft Office based solutions for the Equity Research group. Most recently, Rudolph was a researcher at Carnegie Mellon University's CYLAB, investigating virus and worm threats, especially over peer-to-peer networks. His research interests also span the domain of web service security, survivability, and reliability.
Rudolph has diverse experience in a number of areas of software development and security. He has worked with both independent software vendors as well as large corporate IT organizations. Because of this, he has a unique perspective on the challenges of building real-world secure applications.
Rudolph is an experienced C / C++ and C#/.NET developer and the author of Foundstone's .NET Security Toolkit, SSLDigger, and Hacme Bank tools. Rudolph is also a regular contributor to MSDN's webcast series. Rudolph has been honored with the Microsoft Visual Developer - Security MVP Award in recognition of his thought leadership and contributions to the application security and developer communities.
Rudolph is also a contributor to multiple online and print journals such as MSDN and Software Magazine, where he writes a column on writing secure code. He has also written the foreword for the Microsoft Patterns and Practices Group's Web Services Security Guide.
Rudolph earned an MS from Carnegie Mellon University specializing in Information Security and a BS in Computer Engineering from Goa University in India.
You may contact Rudolph by clicking here.