diff --git a/cv/jess_sullivan_cv.tex b/cv/jess_sullivan_cv.tex index 65416e4..f87244e 100644 --- a/cv/jess_sullivan_cv.tex +++ b/cv/jess_sullivan_cv.tex @@ -11,15 +11,11 @@ %------------------------------------------------------------------------------ % PACKAGES %------------------------------------------------------------------------------ -\PassOptionsToPackage{hyphens}{url} \usepackage[margin=0.85in, top=0.7in, bottom=0.8in]{geometry} \usepackage{fontspec} \usepackage{titlesec} \usepackage{titletoc} \usepackage{hyperref} -\usepackage{xurl} -\setlength{\emergencystretch}{2em} -\Urlmuskip=0mu plus 1mu\relax \usepackage{xcolor} \usepackage{enumitem} \usepackage{fancyhdr} @@ -47,7 +43,6 @@ %------------------------------------------------------------------------------ % FONTS %------------------------------------------------------------------------------ -% Use Tectonic bundle filenames so builds do not depend on OS font registration. \setmainfont{lmroman10-regular.otf}[ BoldFont=lmroman10-bold.otf, ItalicFont=lmroman10-italic.otf, @@ -136,7 +131,7 @@ } \newcommand{\tech}[1]{\texttt{\small\color{secondary}#1}} -\newcommand{\cvlink}[2]{\href{#1}{\color{linkcolor}#2}} +\newcommand{\cvlink}[2]{\href{#1}{\color{linkcolor}\underline{#2}}} %------------------------------------------------------------------------------ % DOCUMENT START @@ -167,7 +162,7 @@ \vspace{1em} {\color{secondary} - Lewiston, ME \& Boston, MA \quad$\cdot$\quad 617-795-6912 \quad$\cdot$\quad \href{mailto:jess@sulliwood.org}{jess@sulliwood.org}} + Lewiston, ME \quad$\cdot$\quad 617-795-6912 \quad$\cdot$\quad \href{mailto:jess@sulliwood.org}{jess@sulliwood.org}} \vspace{0.3em} @@ -184,7 +179,7 @@ %============================================================================== % INTRODUCTION %============================================================================== -My name is Jess Sullivan--- I am a full stack engineer, musician and birdwatcher, currently based in Lewiston, ME \& Boston, MA. Find below a cover letter highlighting my recent and current activities and an up-to-date technical resume. +My name is Jess Sullivan--- I am a full stack engineer, musician and birdwatcher, currently based in Lewiston, ME. Find below a cover letter highlighting my recent and current activities and an up-to-date technical resume. \vspace{0.5em} @@ -193,8 +188,8 @@ %------------------------------------------------------------------------------ \begin{center} \small\color{muted} +\hyperref[sec:resume]{\textsc{Technical Resume}} $\cdot$ \hyperref[sec:foss]{\textsc{Full Stack \& FOSS}} $\cdot$ -\hyperref[sec:resume]{\textsc{Technical Resume}} $\cdot$ \hyperref[sec:volunteer]{\textsc{Volunteer \& Community}} $\cdot$ \hyperref[sec:ventures]{\textsc{Ventures}} $\cdot$ \hyperref[sec:publications]{\textsc{Publications}} $\cdot$ @@ -203,47 +198,6 @@ \vspace{0.5em} -%============================================================================== -% FULL STACK & FOSS -%============================================================================== -\section{Full Stack Contracting and FOSS} -\label{sec:foss} - -Long term committer, member and supporter of numerous organizations including the \textbf{Rocky Enterprise Linux Foundation}, \cvlink{https://github.com/rspamd/rspamd/pull/5923}{\textbf{rspamd}}, \cvlink{https://github.com/chapel-lang/mason-registry/pull/77}{\textbf{Chapel-lang}}, \cvlink{https://github.com/numtide/nix-vm-test/pull/172}{\textbf{numtide}/nix-vm-test}, \cvlink{https://github.com/manaflow-ai/cmux/pull/1877}{\textbf{manaflow-ai}/cmux}, \cvlink{https://github.com/diku-dk/futhark/pull/2365}{\textbf{diku-dk}/Futhark}, \textbf{Liqo}, the \textbf{Apache Foundation}, \cvlink{https://github.com/caddyserver/xcaddy/pull/238}{\textbf{xCaddy}}, \textbf{libdns}, Skeleton UI, \textbf{Klipper}, \textbf{Joplin}, \cvlink{https://github.com/indutny/fft.js}{\textbf{FFT.js}}, \textbf{KeePassXC}, \cvlink{https://github.com/ciscoheat/sveltekit-superforms/pull/678}{svelte-superforms}, \cvlink{https://github.com/shikijs/shiki}{\textbf{ShikiJS}}, \cvlink{https://github.com/tidyverse/ggplot2}{\textbf{ggplot2}}, and \cvlink{https://github.com/Jesssullivan/quickchpl}{\textbf{Mason}}, along with the creation of numerous FOSS automation tools and GIS utilities. - -\begin{itemize} - \item Extensive technical work with startups including \textbf{Dover Micro} (2017) and \textbf{Adaptive Motorsport} (2018) - \item Developed web GIS tools used by the \textbf{National Park Service}, \textbf{Foundation for Healthy Communities}, \textbf{GPRED}, the \textbf{Northern Border Regional Commission}, presented at the 2019 \textbf{AAG Annual Meeting} in Washington, DC (\S\ref{sec:publications}) - \item \textbf{Machine Learning} with \textbf{MushroomObserver.org} and \textbf{Visipedia:} Collaborated on the development and adoption of fine-grained image classification models among crowd-sourced community science niches - \item \textbf{Expanded client list} on request. Current clients include the entire business stack for \cvlink{https://MassageIthaca.com}{\textbf{MassageIthaca.com}} (grown through four business expansions over 3 years!), \textbf{Rossel \& Co}, Tetrahedron Services, R\&D for TimberBuddy hydraulic sawmill systems, many more. -\end{itemize} - -\vspace{0.8em} - -\noindent\textit{\color{muted}My current stack \& technologies:} -\begin{itemize} - \item \textbf{Web \& product:} SvelteKit Runes, Bun, Vite 8/Rolldown, TypeScript (TS7), Tailwind CSS, Skeleton UI, Effect TS, Postgres, FingerprintJS; auth, scheduling, mapping, and site systems. - \item \textbf{Operations \& observability:} Tempo/Grafana, Caddy, Tailscale Operator, on-prem RKE2, Podman Compose. - \item \textbf{Infrastructure:} Nix flakes, Bazel RBE, justfile, OpenTofu, sops+age, Ansible. - \item \textbf{Systems \& research:} Chapel, Rust, Zig, Haskell, Futhark, GhidraScript, Frida, ILSpy, Caldera, Wireshark. -\end{itemize} - -\vspace{0.5em} - -\noindent\textit{\color{muted}Research:} - -\begin{itemize} - \item \textbf{Reverse Engineering \& Binary Analysis:} \tech{GhidraScript}, \tech{Frida}, \tech{ILSpy}, Mitre \cvlink{https://github.com/Jesssullivan/caldera}{Caldera}, \tech{Zig} --- firmware RE and \cvlink{https://github.com/Jesssullivan/hiberpower-ntfs/pull/1}{NVMe XRAM recovery} (see \S\ref{sec:publications}). - \item \textbf{Author of numerous Zig capability libraries} with C ABI surfaces and cross-platform builds: \cvlink{https://github.com/Jesssullivan/zig-crypto}{\tech{zig-crypto}} (\cvlink{https://transscendsurvival.org/zig-crypto/}{docs}), \cvlink{https://github.com/Jesssullivan/zig-notify}{\tech{zig-notify}} (\cvlink{https://transscendsurvival.org/zig-notify/}{docs}), \cvlink{https://github.com/Jesssullivan/zig-keychain}{\tech{zig-keychain}} (\cvlink{https://transscendsurvival.org/zig-keychain/}{docs}), and \cvlink{https://github.com/Jesssullivan/zig-ctap2}{\tech{zig-ctap2}} (\cvlink{https://transscendsurvival.org/zig-ctap2/}{docs}). - \item \cvlink{https://github.com/tinyland-inc/linux-xr}{\textbf{linux-xr}} --- Rocky Linux 10 RPM kernel lane carrying XR display patches and \cvlink{https://github.com/tinyland-inc/linux-xr/pull/66}{Dirty Frag security backports}. Backported \textbf{CVE-2026-31431}, \textbf{CVE-2026-43284}, and \textbf{CVE-2026-43500} into 6.1.y ahead of public disclosure. - \item \textbf{Functional \& Heterogeneous Compute:} \tech{Futhark}/\tech{WebGPU}, ESDT monads, fine-grained classification systems, \tech{Rust} SIMD, \tech{Nix} build systems, deeper WASM integration, and WASM-native inference pipelines. - \item \textbf{Always building:} Hey! I am \textit{always} hacking, learning, building, reading, and tinkering. Day in, day out, this is what I do. For a more up-to-date view into what I am up to whenever you are reading this document, I invite you to explore my \cvlink{https://transscendsurvival.org}{blog}, recent commits on my \cvlink{https://github.com/Jesssullivan}{personal GitHub}, and the \cvlink{https://github.com/tinyland-inc}{organization}. -\end{itemize} - -%============================================================================== -\newpage -%============================================================================== - %============================================================================== % TECHNICAL RESUME %============================================================================== @@ -259,7 +213,7 @@ \section{Technical Resume} \noindent\textit{\color{muted}My stack:} \begin{itemize} \item \textbf{Model Training:} Python (\tech{tensorflow}, \tech{numpy}, \tech{pandas}, \tech{matplotlib}, \tech{JUPYTER}) - \item \textbf{Web \& training annotation stack:} Flask \& TypeScript (\cvlink{https://github.com/indutny/fft.js}{fft.js}, Leaflet, React, Vue, Node, Docker, WebAssembly, Purrr), live demos written in React Native and Swift + \item \textbf{Web \& training annotation stack:} \tech{Flask} \& \tech{TypeScript} (\cvlink{http://fft.js}{fft.js}, \tech{Leaflet}, \tech{React}, \tech{Vue}, \tech{Node}, \tech{Docker}, \tech{WebAssembly}, \tech{Purrr}), live demos written in \tech{React Native} and \tech{Swift} \item \textbf{Training and development Infra:} Project managed in Confluence + BitBucket, hosting on EC2 \& Heroku \end{itemize} @@ -286,17 +240,52 @@ \section{Technical Resume} \subsubsection{Noteworthy projects include:} \begin{itemize} - \item Developed high performance orchestrator and instrumentation tooling for degree management and degree auditing software in \tech{Haskell} + \tech{Python} (QuickCheck, Cabal, podman-compose for development, FPM for packaging and autodevops for CI/CD); uplifted ``unautomatable'' 1980s morris-worm era code unique to higher ed into a verifiable, traceable, k8s friendly workload - \item Overhauled and completely automated the lifecycle of our event management system (extensive development in \tech{C\#}, \tech{Go}, \tech{Ansible}) - \item Led adoption of horizontally scalable \tech{Apache Solr} instances for multiple public and private indexing and search applications - \item Led adoption and built out numerous internal ACME-first certificate management and DNS libraries, templates and tooling - \item Extensive work and peer education around enterprise secret management patterns and SAML at the college. Developed numerous SAML integrations, LTI integrations, Shibboleth and led adoption of \tech{KeePassXC} as part of a declarative Ansible workflow. + \item Built a property-based orchestrator and instrumentation harness for degree-management and degree-auditing software in \tech{Haskell} + \tech{Python} (QuickCheck, Cabal, podman-compose for dev parity, FPM for packaging, AutoDevOps for CI/CD); turned an unautomatable 1980s-era C codebase unique to higher ed into a verifiable, traceable, k8s-friendly workload. + \item Overhauled and automated the event-management lifecycle (\tech{C\#}, \tech{Go}, \tech{Ansible}). + \item Led adoption of horizontally-scalable \tech{Apache Solr} instances across multiple public and private indexing and search applications. + \item Built out internal ACME-first certificate-management and DNS libraries, templates, and tooling. + \item Drove enterprise secret-management practice and authentication / authorization college-wide; developed multiple SAML, LTI, Shibboleth, and bespoke TOTP / OAuth integrations; led adoption of \tech{KeePassXC}, \tech{firewalld}, and \tech{fail2ban} inside declarative Ansible workflows; OTEL / LGTM / Tempo telemetry stack in production. \end{itemize} %============================================================================== \newpage %============================================================================== +%============================================================================== +% FULL STACK & FOSS +%============================================================================== +\section{Full Stack Contracting and FOSS} +\label{sec:foss} + +Long term committer, member and supporter of numerous organizations including \textbf{Rocky Enterprise Linux Foundation} (Community Team and kernel SIG, AltArch SIG), \textbf{rspamd}, \textbf{Chapel-lang}, \textbf{Liqo} (kubernetes topology fabric, used by \textbf{CERN}), The \textbf{Apache Foundation} (ASF \textbf{Solr} web security), \textbf{Caddy} (and xcaddy build tooling), \textbf{libdns} (ACME \& DNS integrations), \tech{Skeleton UI}, \textbf{Klipper}, \textbf{Joplin}, \textbf{FFT.js}, \textbf{keepassxc}, \tech{svelte-superforms} and the creation of numerous FOSS automation tools and GIS utilities. + +\begin{itemize} + \item Extensive technical work with startups including \textbf{Dover Micro} (2017) and \textbf{Adaptive Motorsport} (2018); long thread of personal HID, XR, and sensor-fusion side projects + \item Developed web GIS tools used by the \textbf{National Park Service}, \textbf{Foundation for Healthy Communities}, \textbf{GPRED}, the \textbf{Northern Border Regional Commission}, presented at the 2019 \textbf{AAG Annual Meeting} in Washington, DC (\S\ref{sec:publications}) + \item \textbf{Machine Learning} with \textbf{MushroomObserver.org} and \textbf{Visipedia:} Collaborated on the development and adoption of fine-grained image classification models among crowd-sourced community science niches + \item \textbf{Expanded client list} on request. Current clients include the entire business stack for \cvlink{https://MassageIthaca.com}{\textbf{MassageIthaca.com}} (grown through four business expansions over 3 years!), \textbf{Rossel \& Co}, Tetrahedron Services, R\&D for TimberBuddy hydraulic sawmill systems, many more. +\end{itemize} + +\vspace{0.8em} + +\noindent\textit{\color{muted}My current stack:} +\begin{itemize} + \item \textbf{Web:} \tech{SvelteKit}, Runes, TS7, Vite 8 (Rolldown). I am deeply embedded in SvelteKit and have developed a (largely proprietary, alas) fairly large library of novel SvelteKit packages and expertise ranging from fingerprinting, mapping, authentication to horizontal data scalability and telemetry. + \item \textbf{HPC} and performance oriented code written in \textbf{Chapel} and increasingly \textbf{Haskell}. + \item \textbf{Tooling:} \tech{LLVM/Clang} toolchains, \tech{GNU Make}, \tech{Justfile}, \tech{Nix} flake-structured codebases. +\end{itemize} + +\vspace{0.5em} + +\noindent\textit{\color{muted}Research:} + +\begin{itemize} + \item \textbf{Reverse Engineering \& Binary Analysis:} \tech{Ghidra}, \tech{Frida}, \tech{Zig} --- firmware RE and NVMe controller recovery via USB bridge XRAM injection (see \S\ref{sec:publications}). Developed a 5,400 LOC open-source Zig tool for bypassing ASMedia ASM2362 opcode whitelists to recover write-protected NVMe SSDs over USB. + \item \textbf{Heterogeneous Compute:} \tech{WebGPU}, \tech{Futhark} (GPU-targeting functional language) --- exploring GPU-accelerated workloads and deeper WASM integration for inference pipelines. + \item \textbf{Functional Programming:} ESDT Monads and pixelwise classification research (\cvlink{https://github.com/Jesssullivan/pixelwise-research}{pixelwise-research}). \tech{Rust} (SIMD), \tech{Nix} (build systems). With years of friendly pressure from my friend Lena Berlin (Innovation @ Analog Devices, SHARC, Farmblox), 2026 may be my first year of learning Rust in earnest. + \item \textbf{Linux Kernel:} Ongoing maintainer of a Rocky 10 \tech{PREEMPT\_RT} kernel lane for scientific and HPC experimentation; upstream CVE backports against 6.1.y LTS. +\end{itemize} + %============================================================================== % VOLUNTEER & COMMUNITY %============================================================================== @@ -341,9 +330,17 @@ \section{Ventures} \vspace{0.8em} -\role{Tinyland, Inc (\cvlink{https://github.com/tinyland-inc}{github.com/tinyland-inc})}{2024--present} +\role{Tinyland.dev, Inc (\cvlink{https://github.com/tinyland-inc}{github.com/tinyland-inc})}{2024--present} + +Agent orchestration platform for semiautonomous infrastructure lifecycle management and resource convergence in higher education / academic enterprise. Intended to become entirely zlib / dual license / source available eventually, when it is appropriate to do so. -Agent orchestration platform for semiautonomous infrastructure lifecycle management in higher education. Bootstrapped and in stealth; source-available where appropriate. Infrastructure flywheel work spans \cvlink{https://github.com/tinyland-inc/GloriousFlywheel}{GloriousFlywheel} (\cvlink{https://tinyland-inc.github.io/GloriousFlywheel/}{docs}), \cvlink{https://github.com/tinyland-inc/blahaj}{blahaj}, \cvlink{https://github.com/tinyland-inc/lab}{lab}, \cvlink{https://github.com/tinyland-inc/tinyland-auth}{tinyland-auth}, and the \cvlink{https://github.com/tinyland-inc/bazel-registry/pull/42}{Tinyland Bazel registry}. +Currently in stealth mode, funded by me. + +\vspace{0.5em} +\noindent\textit{\color{muted}Scope:} Spans 5 bespoke SLMs, a bespoke chat interpreter and over a hundred tools autonomously callable by the system. Sits at every part of the IaC lifecycle, connected through a multicloud harness. Horizontal scaling with Chapel-based parallelism. Kubernetes-native architecture with Liqo-based multicloud topology. Chapel, Python, Go. + +\vspace{0.5em} +\noindent\textit{\color{muted}xoxd.ai} --- ML/AI research arm of Tinyland, focusing on bespoke SLM development, property-based testing of agent systems, and multi-cloud federation research. %============================================================================== \newpage @@ -362,10 +359,10 @@ \section{Publications} \vspace{0.8em} -\textbf{Sullivan, J.} (2026). Recovering Write-Protected NVMe SSDs Through USB Bridge XRAM Injection: Bypassing the ASMedia ASM2362 Firmware Opcode Whitelist. \cvlink{https://transscendsurvival.org/papers/recovery-paper.pdf}{recovery-paper.pdf} +\textbf{Sullivan, J.} (2026). Recovering Write-Protected NVMe SSDs Through USB Bridge XRAM Injection: Bypassing the ASMedia ASM2362 Firmware Opcode Whitelist. \cvlink{https://transscendsurvival.org/papers/recovery-paper.pdf}{transscendsurvival.org/papers/recovery-paper.pdf} \vspace{0.3em} -\noindent Novel technique for recovering firmware write-protected NVMe SSDs over USB by injecting NVMe Submission Queue entries directly into the ASMedia ASM2362 bridge controller's internal XRAM via vendor SCSI commands, bypassing the bridge's opcode whitelist. Demonstrated successful recovery of a Phison PS5012-E12 based SSD from permanent silent-write-failure mode using Sanitize Block Erase via XRAM injection and PCIe TLP doorbell signaling. +\noindent Novel technique for recovering firmware write-protected NVMe SSDs over USB by injecting NVMe Submission Queue entries directly into the ASMedia ASM2362 bridge controller's internal XRAM via vendor SCSI commands, bypassing the bridge's opcode whitelist. Open-source tool implemented in approximately 5,400 lines of Zig with 26 unit tests. Demonstrated successful recovery of a Phison PS5012-E12 based SSD from permanent silent-write-failure mode using Sanitize Block Erase via XRAM injection and PCIe TLP doorbell signaling. \vspace{1em} \subsection{Presentations} @@ -375,6 +372,11 @@ \subsection{Presentations} \vspace{0.3em} \noindent Presented community-driven GIS mapping and Photovoice methods for youth recreation access in New Hampshire, alongside avian field research tools built with R, Shiny, and GDAL for KML/CSV/SHP data conversion and centroid analysis of banded bird territories. Work conducted in collaboration with the National Park Service, Foundation for Healthy Communities, GPRED, and Northern Border Regional Commission. +\vspace{0.8em} +\subsection{Research Repositories} + +\cvlink{https://github.com/Jesssullivan/pixelwise-research}{github.com/Jesssullivan/pixelwise-research} --- ESDT Monads and pixelwise classification research. + %============================================================================== \newpage %============================================================================== diff --git a/cv/jess_sullivan_resume.tex b/cv/jess_sullivan_resume.tex index cf1288f..d04455e 100644 --- a/cv/jess_sullivan_resume.tex +++ b/cv/jess_sullivan_resume.tex @@ -11,15 +11,11 @@ %------------------------------------------------------------------------------ % PACKAGES %------------------------------------------------------------------------------ -\PassOptionsToPackage{hyphens}{url} \usepackage[margin=0.65in, top=0.5in, bottom=0.6in]{geometry} \usepackage{fontspec} \usepackage{titlesec} \usepackage{titletoc} \usepackage{hyperref} -\usepackage{xurl} -\setlength{\emergencystretch}{2em} -\Urlmuskip=0mu plus 1mu\relax \usepackage{xcolor} \usepackage{enumitem} \usepackage{fancyhdr} @@ -47,7 +43,6 @@ %------------------------------------------------------------------------------ % FONTS %------------------------------------------------------------------------------ -% Use Tectonic bundle filenames so builds do not depend on OS font registration. \setmainfont{lmroman10-regular.otf}[ BoldFont=lmroman10-bold.otf, ItalicFont=lmroman10-italic.otf, @@ -136,7 +131,7 @@ } \newcommand{\tech}[1]{\texttt{\small\color{secondary}#1}} -\newcommand{\cvlink}[2]{\href{#1}{\color{linkcolor}#2}} +\newcommand{\cvlink}[2]{\href{#1}{\color{linkcolor}\underline{#2}}} %------------------------------------------------------------------------------ % DOCUMENT START @@ -157,11 +152,11 @@ \vspace{0.4em} - {\color{muted} Full Stack Engineer \quad$\cdot$\quad DevSecOps \quad$\cdot$\quad Computer Vision \quad$\cdot$\quad Kernel \& Security Research \quad$\cdot$\quad ML/HPC} + {\color{muted} Agent Orchestration \quad$\cdot$\quad Computer Vision \quad$\cdot$\quad Full Stack Engineer \quad$\cdot$\quad DevSecOps \quad$\cdot$\quad ML/HPC} \vspace{0.4em} - {\small\color{secondary} Lewiston, ME \& Boston, MA \quad$\cdot$\quad 617-795-6912 \quad$\cdot$\quad \href{mailto:jess@sulliwood.org}{jess@sulliwood.org} \quad$\cdot$\quad \href{https://github.com/jesssullivan}{github.com/jesssullivan}} + {\small\color{secondary} Lewiston, ME \quad$\cdot$\quad 617-795-6912 \quad$\cdot$\quad \href{mailto:jess@sulliwood.org}{jess@sulliwood.org} \quad$\cdot$\quad \href{https://github.com/jesssullivan}{github.com/jesssullivan}} \vspace{0.2em} @@ -181,12 +176,12 @@ \vspace{-0.3em} \begin{center} \footnotesize -\begin{tabular}{@{}l@{\hspace{1em}}l@{\hspace{1em}}l@{\hspace{1em}}l@{}} -\textbf{\color{secondary}Languages} & \textbf{\color{secondary}ML/AI \& HPC} & \textbf{\color{secondary}Systems \& Security} & \textbf{\color{secondary}Infrastructure} \\[0.2em] -Python & Fine-grained classification & GhidraScript & Nix, Bazel \\ -TypeScript, Rust & TensorFlow, pandas & Frida, ILSpy & OpenTofu, Ansible \\ -Zig, Chapel, Haskell & NUMA-aware horizontal parallelism & Enterprise MFA systems \& standards & RKE2 (k8s) \\ -Go, C++, R, Shell & Realtime model evaluation \& SLM inference & OpenTelemetry & GitLab AutoDevOps \\ +\begin{tabular}{@{}l@{\hspace{1.2em}}l@{\hspace{1.2em}}l@{}} +\textbf{\color{secondary}Languages} & \textbf{\color{secondary}ML/AI \& HPC} & \textbf{\color{secondary}Infrastructure} \\[0.2em] +Python (10+ yrs, enterprise) & Fine-grained classification & CI/CD pipelines (expert) \\ +TypeScript / SvelteKit (SOTA) & Horizontal parallelism in ML/AI & Kubernetes orchestration \\ +Chapel (expert), Haskell & WASM-native inference & Binary analysis (Ghidra, Frida) \\ +Zig, Go, C\# & MLOps \& model evaluation & Realtime \& time-series pipelines \\ \end{tabular} \end{center} @@ -198,6 +193,36 @@ \section{Experience} \label{sec:resume} +%--- Full Stack Contracting & FOSS --- +\role{Full Stack Contracting and FOSS}{Ongoing} + +Ongoing contributor and community member of numerous open source projects including---and not limited to---the \textbf{Apache Foundation} (Solr web security), \textbf{rspamd}, \textbf{Chapel-lang}, \textbf{Caddy}/xcaddy, \textbf{libdns}, \tech{Skeleton UI}, \textbf{Klipper}, \textbf{Joplin}, \textbf{FFT.js}, \textbf{KeePassXC}, \tech{svelte-superforms}, the \textbf{Rocky Enterprise Linux Foundation} (Community Team, Kernel SIG, AltArch SIG), \textbf{Liqo} (K8s topology fabric, used by CERN), \textbf{Budgie DE}, \textbf{Mason}, along with authoring numerous FOSS automation tools, libraries and open source utilities. Expanded client list and customer references available upon request. + +\begin{itemize} + \item Startup work: \textbf{Dover Micro} (2017), \textbf{Adaptive Motorsport} (2018); long thread of personal HID, XR, and sensor-fusion projects. + \item Web GIS tools for \textbf{National Park Service}, \textbf{Foundation for Healthy Communities}, \textbf{GPRED}, \textbf{Northern Border Regional Commission}. Presented at 2019 \textbf{AAG Annual Meeting} in Washington, DC (\S\ref{sec:publications}). + \item Fine-grained image classification with \textbf{MushroomObserver.org} and \textbf{Visipedia}; early adopter of CNN-based species ID at scale. +\end{itemize} + +\vspace{0.4em} +\noindent\textit{\color{muted}Current stack:} +\begin{itemize} + \item \textbf{Web:} \tech{SvelteKit} (Runes), \tech{Bun}, \tech{Vite 8} (Rolldown), TS7. Proprietary SvelteKit libraries for fingerprinting, auth, mapping, telemetry. + \item \textbf{HPC:} \tech{Chapel}, \tech{Haskell}. Performance-oriented systems and property-based testing. + \item \textbf{Tooling:} \tech{LLVM/Clang} toolchains, \tech{GNU Make}, \tech{Justfile}, \tech{Nix} flake-structured codebases. +\end{itemize} + +\vspace{0.3em} +\noindent\textit{\color{muted}Research:} +\begin{itemize} + \item \textbf{Reverse Engineering \& Binary Analysis:} \tech{Ghidra}, \tech{Frida}, \tech{Zig} --- firmware RE and NVMe controller recovery via USB bridge XRAM injection (\S\ref{sec:publications}). 5,400 LOC Zig tool for bypassing ASMedia ASM2362 opcode whitelists. + \item \textbf{Heterogeneous Compute:} \tech{WebGPU}, \tech{Futhark} (GPU-targeting functional language), deeper WASM integration and WASM-native inference pipelines. + \item \textbf{Functional Programming:} ESDT Monads and pixelwise classification research (\cvlink{https://github.com/Jesssullivan/pixelwise-research}{pixelwise-research}). \tech{Rust} (SIMD), \tech{Nix} (build systems). + \item \textbf{Linux Kernel:} Ongoing maintainer of a Rocky 10 \tech{PREEMPT\_RT} kernel lane for scientific and HPC experimentation; upstream CVE backports against 6.1.y LTS. +\end{itemize} + +\vspace{0.4em} + %--- Systems Analyst --- \role{Systems Analyst (DevSecOps) @ Bates College}{2024--Present} @@ -205,11 +230,11 @@ \section{Experience} \subsubsection{Noteworthy projects:} \begin{itemize} - \item Developed high performance orchestrator and instrumentation tooling for degree management and degree auditing software in \tech{Haskell} + \tech{Python} (QuickCheck, Cabal, podman-compose for development, FPM for packaging and autodevops for CI/CD); uplifted ``unautomatable'' 1980s morris-worm era code unique to higher ed into a verifiable, traceable, k8s friendly workload - \item Overhauled and completely automated the lifecycle of our event management system (extensive development in \tech{C\#}, \tech{Go}, \tech{Ansible}) - \item Led adoption of horizontally scalable \tech{Apache Solr} instances for multiple public and private indexing and search applications - \item Led adoption and built out numerous internal ACME-first certificate management and DNS libraries, templates and tooling - \item Extensive work and peer education around enterprise secret management patterns and SAML at the college. Developed numerous SAML integrations, LTI integrations, Shibboleth and led adoption of \tech{KeePassXC} as part of a declarative Ansible workflow. + \item Built a property-based orchestrator and instrumentation harness for degree-management and degree-auditing software in \tech{Haskell} + \tech{Python} (QuickCheck, Cabal, podman-compose for dev parity, FPM for packaging, AutoDevOps for CI/CD); turned an unautomatable 1980s-era C codebase unique to higher ed into a verifiable, traceable, k8s-friendly workload. + \item Overhauled and automated the event-management lifecycle (\tech{C\#}, \tech{Go}, \tech{Ansible}). + \item Led adoption of horizontally-scalable \tech{Apache Solr} instances across multiple public and private indexing and search applications. + \item Built out internal ACME-first certificate-management and DNS libraries, templates, and tooling. + \item Drove enterprise secret-management practice and authentication / authorization college-wide; developed multiple SAML, LTI, Shibboleth, and bespoke TOTP / OAuth integrations; led adoption of \tech{KeePassXC}, \tech{firewalld}, and \tech{fail2ban} inside declarative Ansible workflows; OTEL / LGTM / Tempo telemetry stack in production. \end{itemize} \vspace{0.4em} @@ -234,36 +259,6 @@ \subsubsection{Noteworthy projects:} \item \textbf{Infrastructure:} EC2, Heroku, BitBucket CI/CD, production model deployment at scale \end{itemize} -\vspace{0.4em} - -%--- Full Stack Contracting & FOSS --- -\role{Full Stack Contracting and FOSS}{Ongoing} - -Ongoing contributor and community member of numerous open source projects including---and not limited to---the \textbf{Apache Foundation}, \cvlink{https://github.com/rspamd/rspamd/pull/5923}{\textbf{rspamd}}, \cvlink{https://github.com/chapel-lang/mason-registry/pull/77}{\textbf{Chapel-lang}}, \cvlink{https://github.com/numtide/nix-vm-test/pull/172}{\textbf{numtide}/nix-vm-test}, \cvlink{https://github.com/manaflow-ai/cmux/pull/1877}{\textbf{manaflow-ai}/cmux}, \cvlink{https://github.com/diku-dk/futhark/pull/2365}{\textbf{diku-dk}/Futhark}, \cvlink{https://github.com/caddyserver/xcaddy/pull/238}{\textbf{xCaddy}}, \textbf{libdns}, Skeleton UI, \textbf{Klipper}, \textbf{Joplin}, \cvlink{https://github.com/indutny/fft.js}{\textbf{FFT.js}}, \textbf{KeePassXC}, \cvlink{https://github.com/ciscoheat/sveltekit-superforms/pull/678}{svelte-superforms}, \cvlink{https://github.com/shikijs/shiki}{\textbf{ShikiJS}}, \cvlink{https://github.com/tidyverse/ggplot2}{\textbf{ggplot2}}, the \textbf{Rocky Enterprise Linux Foundation}, \textbf{Liqo}, \textbf{Budgie DE}, \cvlink{https://github.com/Jesssullivan/quickchpl}{\textbf{Mason}}, along with authoring numerous FOSS automation tools, libraries and open source utilities. Expanded client list and customer references available upon request. - -\begin{itemize} - \item Startup work: \textbf{Dover Micro} (2017), \textbf{Adaptive Motorsport} (2018) - \item Web GIS tools for \textbf{National Park Service}, \textbf{Foundation for Healthy Communities}, \textbf{GPRED}, \textbf{Northern Border Regional Commission}. Presented at 2019 \textbf{AAG Annual Meeting} in Washington, DC (\S\ref{sec:publications}). - \item Fine-grained image classification with \textbf{MushroomObserver.org} and \textbf{Visipedia}; early adopter of CNN-based species ID at scale. -\end{itemize} - -\vspace{0.4em} -\noindent\textit{\color{muted}Current stack \& technologies:} -\begin{itemize} - \item \textbf{Web \& product:} SvelteKit Runes, Bun, Vite 8/Rolldown, TypeScript (TS7), Tailwind CSS, Skeleton UI, Effect TS, Postgres, FingerprintJS; auth, scheduling, mapping, and site systems. - \item \textbf{Operations \& observability:} Tempo/Grafana, Caddy, Tailscale Operator, on-prem RKE2, Podman Compose. - \item \textbf{Infrastructure:} Nix flakes, Bazel RBE, justfile, OpenTofu, sops+age, Ansible. -\end{itemize} - -\vspace{0.3em} -\noindent\textit{\color{muted}Research:} -\begin{itemize} - \item \textbf{Reverse Engineering \& Binary Analysis:} \tech{GhidraScript}, \tech{Frida}, \tech{ILSpy}, Mitre \cvlink{https://github.com/Jesssullivan/caldera}{Caldera}, \tech{Zig}. Firmware RE and \cvlink{https://github.com/Jesssullivan/hiberpower-ntfs/pull/1}{NVMe XRAM recovery} (see \S\ref{sec:publications}). - \item \textbf{Author of numerous Zig capability libraries} with C ABI surfaces: \cvlink{https://github.com/Jesssullivan/zig-crypto}{\tech{zig-crypto}} (\cvlink{https://transscendsurvival.org/zig-crypto/}{docs}), \cvlink{https://github.com/Jesssullivan/zig-notify}{\tech{zig-notify}} (\cvlink{https://transscendsurvival.org/zig-notify/}{docs}), \cvlink{https://github.com/Jesssullivan/zig-keychain}{\tech{zig-keychain}} (\cvlink{https://transscendsurvival.org/zig-keychain/}{docs}), \cvlink{https://github.com/Jesssullivan/zig-ctap2}{\tech{zig-ctap2}} (\cvlink{https://transscendsurvival.org/zig-ctap2/}{docs}). - \item \cvlink{https://github.com/tinyland-inc/linux-xr}{\textbf{linux-xr}} --- Rocky Linux 10 RPM kernel lane carrying XR display patches and \cvlink{https://github.com/tinyland-inc/linux-xr/pull/66}{Dirty Frag security backports}. Backported \textbf{CVE-2026-31431}, \textbf{CVE-2026-43284}, and \textbf{CVE-2026-43500} into 6.1.y ahead of public disclosure. - \item \textbf{Functional \& Heterogeneous Compute:} \tech{Futhark}/\tech{WebGPU}, ESDT monads, fine-grained classification systems, \tech{Rust} SIMD, \tech{Nix} build systems, deeper WASM integration, and WASM-native inference pipelines. -\end{itemize} - %============================================================================== % VOLUNTEER & COMMUNITY %============================================================================== @@ -280,6 +275,26 @@ \section{Volunteer \& Community} Led 501(c)(3) makerspace through rapid growth; coached hundreds via ``Fusion 360 for 3D printing'' series. +%============================================================================== +% BUSINESS VENTURES +%============================================================================== +\section{Business Ventures} +\label{sec:ventures} + +\role{Tinyland.dev, Inc (\cvlink{https://github.com/tinyland-inc}{github.com/tinyland-inc})}{2024--present} + +Agent orchestration platform for semiautonomous infrastructure lifecycle management in higher education. Bootstrapped and in stealth; targeting source-available / zlib dual licensing. + +\vspace{0.2em} +\noindent\textit{\color{muted}Scope:} 5 bespoke SLMs, 100+ autonomously callable tools, full IaC lifecycle coverage via a multicloud harness. Horizontal scaling with Chapel-based parallelism. Kubernetes-native architecture with Liqo-based multicloud topology. + +\vspace{0.2em} +\noindent\textit{\color{muted}xoxd.ai} --- ML/AI research arm. Bespoke SLM development, property-based testing of agent systems, and multi-cloud federation research. Chapel, Python, Go. + +\vspace{0.3em} + +\noindent\textit{\color{muted}Previous:} \textbf{Columbari.us LLC} (2017--2021) --- GIS \& ML contracting for UNH, NH municipal, Cornell. HPC hackerspace venture (2021--2024). + %============================================================================== % PUBLICATIONS %============================================================================== @@ -290,7 +305,7 @@ \section{Publications} \vspace{0.3em} -\textbf{Sullivan, J.} (2026). Recovering Write-Protected NVMe SSDs Through USB Bridge XRAM Injection: Bypassing the ASMedia ASM2362 Firmware Opcode Whitelist. \cvlink{https://transscendsurvival.org/papers/recovery-paper.pdf}{recovery-paper.pdf} +\textbf{Sullivan, J.} (2026). Recovering Write-Protected NVMe SSDs Through USB Bridge XRAM Injection: Bypassing the ASMedia ASM2362 Firmware Opcode Whitelist. \cvlink{https://transscendsurvival.org/papers/recovery-paper.pdf}{transscendsurvival.org/papers/recovery-paper.pdf} \vspace{0.4em} \noindent\textit{\color{muted}Presentations:} diff --git a/static/cv/jess_sullivan_cv.pdf b/static/cv/jess_sullivan_cv.pdf index dcbee77..8929491 100644 Binary files a/static/cv/jess_sullivan_cv.pdf and b/static/cv/jess_sullivan_cv.pdf differ diff --git a/static/cv/jess_sullivan_resume.pdf b/static/cv/jess_sullivan_resume.pdf index 9fa7f6a..f6f0f2b 100644 Binary files a/static/cv/jess_sullivan_resume.pdf and b/static/cv/jess_sullivan_resume.pdf differ