Alex Fedosov

Alex Fedosov

alex_fedosov@foundaition.org | 508-740-0041 | Hopkinton, MA 01748 | linkedin.com/in/alex-fedosov

 

Senior Software Architect

Senior Software Architect with deep expertise in the design and development of a variety of web, security, client-server, mobile and multi-tiered Big Data applications. Pioneered AETD, Advanced Endpoint Threat Detection technology in security business. Known for possessing extensive knowledge in all phases of SDLC, software design, development, administration and testing. Passionate about leveraging skills and experience using C++ 17/20, Python, C#/NET, Elastic Search to enable the organization achieve success. Exploring AI technologies, Cuda SIMD, ML, ChatGPT and RNN.

 

C++ 17/20 | Python | Security | Design | Architecture | Big Data | CUDA | GPU

Multicore and Parallel Programming | Machine Learning | Deep Learning

 

Professional Experience

Dell SecureWorks, Providence, RI

Senior Principal Software Engineer Mar 2013 - Mar 2023

Pioneered Red Cloak AETD, Advanced Endpoint Threat Detection system with >5,000,000 worldwide deployments and over 2000 customers, utilizing Amazon AWS, C++ and Python. Numerous Gartner and MITRE awards.

 

·    From the ground up designed and developed essential parts of RedCloak AETD, Cyclorama (thread injection detection) and Changeling module to support new/old agents communication and data collection. Participated in the complete lifecycle of all modules and core libraries, including design, review, development, testing, and support. Contributed to the award-winning Inspector module, which is deployed as a Python console for executing custom scripts on end-points. Led the project’s transition to Linux/RHEL. Supervised coding standards compliance. Conducted new team members’ onboarding and training. Led research in new technology domains with GoLang, SkyTap, Fuzzing tests, cross-platform design, adopting project to business requirements.

·    Proposed and designed the Songbird module, a remote command execution shell, to enhance the company's competitive posture. The module runs as an asynchronous unbuffered Windows command console with multi-language support and replaceable kernel. Used OSQuery as an additional CLI.

·    Developed RedCloak Ignition module communication protocol and core libary - the Agent 2.0 component that is responsible for agent persistance, updates and crash reporting. This has improved agent stability KPI by 55%.

·    Improved various modules’ performance by 20-70% with profiling, using WPA and WPP tracing, ETW, PerfMon and LoadGenerator custom profiler (start/stop time, IO, memory use, other counters). Led QA team to develop performance tracking strategy, test methodology and agent reliability framework.

·    To improve business value and extend lifecycle of the product, proposed and implemented CrossConnect module, to support new/old agents’ coexistence and communication via IPC on the same host, which doubled customer retention KPI.

·    Designed and developed agent user mode dump collection system from scratch, using WER and BCrypt. Extended it to collect OS crash dumps and other files on demand. Designed and implemented crash dump stack extraction system using MS Debug Engine. Created Trusted File Catalog Constitution, RSA signed, with a hard-coded Public-Key to verify the signature.

·    Improved overall product reliability by 35% with agent memory watcher to alert of OOM, Out-Of-Memory situation. Performed agent troubleshooting, finding memory leaks.

·    Designed and developed agent fingerprints (host metrics) collection module and new communication protocol, tArpc based on WinHTTP / WebSockets.

·   Orchestrated Agent 3.0 beginning, with BCrypt lib wrapped in C++ 20 partitioned modules, migrated project build from GYP to Cmake, migrated solution to Visual Studio 2017 and 2019.

·   Designed new agent installation platform using a generic installer with no associated domain/tenant on Windows platform (universal config, separate x64/x86 installers). Implemented custom action DLL for installer.

 

Additional Relevant Experience

Research Lead, Machine Learning, FoundAItion.org, Framingham, MA

Senior Software Developer, Work Technology Corporation, Sommerville, MA

Senior Software Consultant, The Dalmatian Group, Inc., Reno, NV

 

Training and Certifications

AWS Training, by Kryterion

DataStax Developer for Apache Cassandra, by DataStax

Windows® Internals and Software Driver Development, by OSR

Security Principles and OWASP, by SecureWorks

Big Data Bootcamp, by Global BigData

 

Patent Requests

Obfuscate Python source code with custom byte-code compilation, Id:81522521, 2018

Asynchronous unbuffered Windows command console with multi-language support, Id:81585705, 2019

 

Technical Skills and Expertise

Software Languages: C/C++ 17/20, Python, C# , SQL Oracle

GUI Development: Visual Studio, Visual Studio Code, PyCharm, CodeWarrior C++ with POL, Eclipse.

Databases and Database Access Libraries: MS SQL, Oracle, SQLBase, ElasticSearch, Cassandra, RabbitMQ, xBase/CodeBase, Sqlite/sqlcipher.

Programming Technologies and Protocols: Win32 API, Google Chromium, Protobufs, NVidia Cuda API, .NET Framework, SIMD, Parallel and distributed processing, Multithreading, Web services, XML/SOAP, Vault oidc, RDP, COM/DCOM, WMI, Remedy API, SkyTap API, powershell/vb/vba scripting.

Other Tools and Libraries: CUDA Computing SDK, Boost, STL, InstallShield, Wix and MSI, Lenel OnGuard SDK, WPA and WPP tracing, ETW, libevent/openssl/curl, Cmake/GYP, BCrypt, gmock/gtest/NUnit.

Operation Systems and Networks: MS Windows, Palm OS, Linux Red Hat, Virtual OS under VMWare and MS Virtual Server.

Hardware: Intel 32/64 bit, NVidia GPU, Palm, AccuTime, Synel, Lenel, ZK card reading and biometric devices.

 

Education

Graduate Assistant, MTU,Moscow Technological University, Moscow, Russia

Bachelor of Science (BS), Computer Science, Applied Mathematics, Moscow Technological University, Moscow, Russia