1. Paul Malachowski
12575 Royal Wolf Place
Fairfax, VA, 22030
Primary email:
LinkedIn:
Phone:
paul@chowski.com
LinkedIn@chowski.com
(703) 628-3260
Solution Architect / Senior Software Engineer / CISSP
Technology Sector / Government Contracting / Treasury Contracting
Solution oriented, outside the box thinker, proactive technician, with a wide range of tools at his disposal.
Expertise in most aspects of computing solutions from small local area networks to large enterprise wide
systems including WWW public web sites, COTS products and databases.
Extensive experience in testing all aspects of the developed product to ensure it meets specifications. Heavy
use of scripts / custom programs to automate critical parts of system support, including building automated
function/stress testing, monitoring, patching, deployment and day to day support scripts.
Strong government experience, with over 20 years at Main Treasury (across four contractors), working on
highly visible, politically charged, critical projects. Very strong, hands on background in software development
(various languages, C#, Java, VB.Net, C, etc.); network infrastructure; desktop engineering; document
management; SOA; PKI, building secure systems/security incident management; server migrations/upgrades;
helpdesk triage; database administration (SQL Server, Oracle); SharePoint and application and system
monitoring. He has a strong background in learning, configuring, programming/scripting and optimizing COTS
products to fully leverage the tool. With such a broad set of tools at his disposal, he strives for the best solution
for the problem at hand balancing all requirements.
With experience in all versions of Windows (both desktop and server), mainframes and some Unix, his legacy
experience is strong. Yet his quest to learn has kept him current on new technologies. This background has
made him very useful in complex conversion projects as well as normal system upgrades. Finally, his
entrepreneur experience makes him valuable in new situations/projects where the rules just being formulated.
Job History
Contracting Work (1992-Present)
Department of Treasury : (1996-present) Senior technical member of the ASSC Contract for the past four
contractors. Current responsibilities include serving as the HQIT Project Manager, SQL Server DBA, Oracle
support, security interface (CISSP) and general infrastructure support. In this position he is responsible for
supporting more than twenty disparate applications and customer groups throughout all of Treasury and the
WWW. A major part of this task is the supporting, testing and deployment of new servers, applications and
releases including automated monitoring and testing of the changes.
Working knowledge of Treasury and its internal infrastructure. Primary interface with Main Treasury’s,
Infrastructure and Operations Support team. Primary interfaces with infrastructure issues and the Application
Contractor to ensure smooth operations as the network architecture changes. Works closely with security to
respond to vulnerability scans, C&A, FISMA Reporting, etc. Works closely with Application and Infrastructure
teams to ensure all patches are properly tested and applied.
As a CISSP, he works with security personnel and developers to provide vulnerability support, help develop
more secure applications and systems, and take part in incident responses. Investigate and implement fixes to
vulnerabilities; involved with the POAM process, etc.
As a SQL DBA, he supports daily DBA tasks (create and monitor backup / restore scripts, SQL configuration
tweaking, user management, security, patching, Encryption, etc). Extensive experience with migrating from
previous versions of SQL to newer ones. (from SQL 6.5 up to SQL 2008 R2).
As a long time developer, he writes C# programs, scripts and works with developers to fill in where needed to
help projects meet deadlines.
Worked on the OFAC Enterprise Architect project – a major effort to re-architect the offices entire application
solution suite. This included building 24 servers (IIS, Oracle, Oracle Application, Kofax, SOA Application
2. server); using SOA principles to better abstract the commonly used functions of the office; SharePoint 2010,
etc.
Customized COTS monitoring system (C#) to perform over 400 tests on applications in the ASSC contract.
With this monitoring system, virtually all system failures are caught, reported and usually fixed before users
are aware of the problem.
Developed interfaces/services with Kofax in C# to automatically import various scanned/faxed/OCRed
documents into the document repository (Oracle and SharePoint 2010).
Primary application interface for FDCC (Federal Desktop Core Configuration, an OMB mandate) and the
Windows 7 migration. Interfaced with the seat contractor to ensure that applications work properly and there is
a smooth transition to the new desktop.
Primary application support individual for PKI (Public Key Infrastructure) when used by E-Authenticated (via
GSA) applications such as (SEG (Secure Extranet Gateway), TEOAF, ABaRRS) as well as TSAS. Solid
knowledge of PKI and how it is applied at Treasury (OCA, ECA, TEDS, etc.).
Primary developer/designer on OFAC document capture project in the area of Kofax Ascent software. This
project uses a web delivery of PDF forms with 2D barcodes. Then the paper application is scanned and
captured into the existing OFAC FACDB system. Created custom Kofax interface to access and send
document/Index data to Oracle.
Heavy involvement with OFS (TARP) office applications. This project makes heavy use of Sharepoint 2007
and various other technologies. Worked on the SharePoint 2003 to 2007 conversion team. Developed the
OFS Document Scanning sub-system to scan and send documents to SharePoint using Kofax Ascent and
custom C# programs.
Heavy involvement with Federating three Treasury applications with GSA. This involved evaluating regulatory
guidelines such M-04-04, NIST 800-53, Authentication Legal Suite, Boarding Pass and Section 508.
Major contributor on TACT (Correspondence Tracking System) to track and manage the Secretary of the
Treasury’s incoming mail. This system is a critical system that manages letters from Congress as well as
private citizens.
Primary contributor to systems such as Find A Folder (Full text Client Server ad-hoc search tool), TADS Scan
II (Scanning and Indexing system); TACT (Server Side Objects) and BusyWaiter (Application Server
component for OCR and Full Text indexing).
Department of Commerce (OIG): (2013-Present) Provide general technical support to the CyberData/OIG
Helpdesk. Create scripts, assist with vulnerability patching. Manage WUG (What’s Up Gold) to monitor virtually
all OIG servers/services.
Digital Publishing: (1998-1999) Primary developer for all DPI websites. DPI publishes the knowledge
repository of many associations. This data is then accessible to all association members. Websites are
Frontpage based with ASP programs calling custom VB components.
The Centech Group: (1999) Member of the WHISDM development team. This project built a custom Visual
Basic application to manage White House records and scanned documents. The system made heavy use of
custom components and custom OCXs. Images were managed by Filenet and retrieved by accessing Oracle
and its full text ‘context’ facilities.
Department of Justice/LSI: (1995-1998) Major developer for the Litigation Toolkit. This Intranet, non-
browser based product, provides full text search facilities for DOJ lawyers and para-legals nationwide.
Primary developer on the server side objects (NT 4.0, IIS 4.0) and client side objects. These objects provided
transparent, local and HTTP access to SQL Server, Oracle, Access and Concordance (full text search)
databases.
This application is accessed by over several hundred DOJ lawyers (and para-legal) over the entire country.
3. Gannon Technologies: (1992-1995) Developed Gannon Conversion System, a Windows based system to
totally control the workflow of a microfilm/paper document conversion project. Running on a 100 user Netware
platform, the software accepts a batch of images from any scanning source and routes the images through the
proper steps defined as necessary by the project profile for that batch. These steps include image cleanup
(convert, rotation, crop, de-skew, barcode, OCR, etc.), Synch Check, QC, Indexing and Output. This project
based system allowed the company to easily accommodate multiple jobs and their associated processes.
Grumman Data Systems: (1994-1995) Managed the OCR/ICR/Verify processes for various state tax image
conversion jobs. Using Symbus as the OCR/ICR engine, wrote/managed form definitions and form
identification rules to optimize OCR performance.
Blue Mountain Data Systems: (1994-1996) Consulted with Veterans Administration to streamline the VA
adjudication process through imaging. The system was a Windows/Novell/Oracle/Visual Basic based system
that scanned images and routed them through various workflow stages to the eventual dispensing to Optical
Jukeboxes. All paper coming into and going out of the VA regarding a veteran obtaining benefits was digitized
and stored. This information combined with hospital and Social Security data would be used to determine
payment amounts.
Consulted with NATO to manage NATO Secret documents from their initial scanning to the final saving onto
an Optical Jukebox. The processes of managing and tracking Classified documents were accomplished using
Oracle running on Novell using proprietary and custom Visual Basic programs running on Windows.
Litigation Systems Inc (LSI): (1995-1999) Developed a batch scanning facility to scan documents related to
litigation. This system used the Pixel Translation and Accusoft toolkits and runs under Windows 3.1,’95 and
NT. It provides a project oriented facility that allows many different scanning jobs to be handled at once.
Some of the project definable parameters include batch naming conventions, automatic smart sheet insertion,
output format control, indexing and export target database (Basis, Concordance, Lotus Notes and PDF).
These systems are currently being used by LSI and MCI as the main vehicle to input documents into the
system.
Previous Employment
PC Manager Inc. (10/1/83 - 5/15/92), Vice President Development, Manager of Development
Managed all technical aspects of the company in support of its products that were all based on a proprietary
IBM PC DBMS engine. (See Brillig Systems) These products were either developed for resale or for
repackaging by major manufacturers such as SONY, Panasonic and DataCard with their hardware products.
In addition to product development, several system integration jobs were completed for major customers.
These include companies such as Boeing, Booz, Allen & Hamilton, DuPont, Squibb and Polaroid; government
agencies such as DEA, INS, FTC and the Army; and the government of Mexico.
Made significant development and marketing contributions in bringing the following products to market:
DataEdge, PC Album, SONY SVBS, Video Guide, PanaAlbum, AVIIS, and PICS. Converted standard DBMS
(DataEdge) to an Image Database. Creation of these products required many technologies including DBMS
and computer language design, imaging and general system integration concepts. Designed and developed
PAL, an event driven programming language to control access to PC Manager.
Brillig Systems, Inc (7/1/80 - 10/1/83), President
Founding member in a company created to write software for blossoming Apple and IBM PC marketplace.
Using software from his personal computer hobby, created two products for the Apple II marketplace: The
General Manager and Apple Writer Extended. Apple Writer Extended was a word processing utility and sold
over a thousand copies. The General Manager was a fully functional DBMS for the Apple II. This product
enjoyed worldwide use and sold over 10,000 copies in its first two years, which at the time was a record for a
product of its kind. In 1983 The General Manager was converted to the IBM PC platform and sold to PC
Manager Inc.
Pansophic Systems Inc. (6/1/77 - 7/1/80), Manager Panaudit Development, System Representative
Contributed to development and sales support of all Pansophic's products including Easytrieve, PANVALET,
PANEXEC, PANAUDIT and other software products for the IBM mainframe market. Was a System
Representative, traveling throughout the country to train major corporations on the usage of Pansophic
4. products.
Performed virtually all technical aspects: initial design, programming, final documentation and worldwide
training of PANAUDIT Version 1.0. This product sold over $1 Million (a record) in its first year and earned him
a promotion and transfer from Massachusetts to Virginia.
Mass. Mutual Life Ins. Co. (6/1/74 - 6/1/77), Resident Technical Advisor (RTA), Programmer/Analyst
General programming on many insurance systems. As an RTA, supported other programmers divisionwide
with their technical problems.
Youngest person to achieve position of RTA. Became familiar with many third party software vendors and well
known as an Easytrieve expert. This eventually led him to join the publisher of that product, Pansophic.
Education
B.S. Mathematics, Lowell Technological Institute (1974), currently Lowell University.
Technical Synopsis
Platforms: Windows (3.1, ‘95, ’98, NT (3.51, 4.0, 2000, 2003, 2008 R2, XP, Vista, Windows 7), MS-DOS,
SharePoint 2003, 2007, 2010, VMWare 5,6,7. IIS (all versions), SQL Server DBA
Technologies: .NET, Java, MVC, ASP, COM/DCOM, PKI
Support Skills: Strong experience in end to end testing of all aspects of a computer system. Heavy use of
automated testing methodologies at the Class/Object/Properties/Method level.
Programming Skills: Strong in .Net, (C#, VB.NET), Visual Basic (Versions 3-6), C/C++, Java, Pascal, 80x86
and 6502 assembler, COBOL, SQL, Java/JavaScript/VBScript. General familiarity with most other languages,
Powerbuilder, Fortran, most assemblers, Xbase, Viewstar Script. Extensive use of the Windows API. Has
written hardware interface programs, COM/DCOM objects, general workflow systems, front ends to DBMS
applications.
Infrastructure: Full knowledge and strong experience in working on multi-discipline teams to provide a total
solution. Provided technical and management support for end to end patching support. Strong knowledge and
experience in upgrading, migrating, deploying and patching servers and workstations.
Internet/Intranet: Extensive experience configuring and maintaining Internet/Intranet servers using Window
NT (3.51, 4.0, 2000, 2003, 2008) IIS (3, 4, 5, 6,7), Active Server Pages (ASP, ASPX), Server side objects,
.NET. Used JavaScript, VBScript for client side browser enhancements. Knowledgeable in Java, Java/VB
Script, CGI, HTML, PERL, OLEISAPI. Has written both browser and non-browser based Internet/Intranet
applications. Maintains onsite a web server at http://www.softwaregw.com.
Design: Extensive experience in designing, building and using external objects. Experienced in Microsoft
COM/DCOM: Active X, Remote/Local Servers, In Process/Out of Process. Main thrust of design is reducing
application maintenance through effective use of OOP and external configuration information. Experienced in
Client/Server and N-Tiered design.
Systems Analysis: Experienced in getting to the real problem that needs to be solved.
Tools: Significant use with many development and integration tools such as: Kofax Ascent (Certified), Neevia,
Adobe Acrobat, LiveCycle 7.1, 8.0. VM Ware, Ghost, Sysinternals Utilities. Visual Interdev, Visual C++,
Visual Studio, Visual Studio .NET, PVCS, Merant, Tracker, SourceSafe, Frontpage ‘98/2000, Viewstar, C-
Set/2, Workbench/2, Delphi, Powerbuilder, Watermark, ER Win.
Databases: SQL Server DBA; Has used many DBMS systems such as: SQL Server (4.2, 6.0, 6.5, 7.0, 2000,
2005, 2008), Oracle (9, 10, 11g), MySQL, MS Access (2.0, ’97, 2003, 2010), DBASE, Clipper, Paradox,
Paradox Engine, DataEdge, PC Album. Experienced with full text databases as Fulcrum, Oracle context, SQL
Full text, Concordance, Basis.
5. Interfacing: Extensive experience in writing both low and high level "device drivers" for printers, scanners,
image capture and display boards, image compression boards, tape drives, modems and various other boards
that interface a computer with the outside world. Has interfaced directly to hardware or through manufacturer
supplied library or Windows DLL. Has written low level interfaces such as TSRs, DLLs and OCXs.
Imaging / Document Management / Conversion / Capture: Kofax Certified, Strong background in both
document and video imaging: digitization, compression, management, display and printing in many types of
imaging applications. Strong experience with OCR/ICR systems, microfilm/microfiche/paper scanning,
slide/video digitization, I.D. Badge systems, Multi-Media management, Video Booking and Security Systems.
Proficient with imaging toolkits such as Pixel Translations, Image Basic, Sequoia Systems, Decomp, Accusoft,
Kofax, and Xionics, Watermark, Viewstar.
Workflow: Has been a major contributor to both complex and simple workflow systems.
Networking: Proficient in configuring Windows (NT/95/3.1,3.51,4.0, 2000, 2003, 2008, 2012 XP, Vista,
Windows 7, 8, 10), NetWare (3.12, 4.0); Strong working knowledge of TCP/IP, DHCP, DNS, WINS, IPX/SPX,
NetBEUI, NETBIOS, Firewalls, Proxies, Routers.
Regulatory: Knowledgeable in areas such as C&A, SA&A, 508 compliance, FISMA Reporting, POAMS, E-
Authentication (has been involved first hand with three Federation of three applications thru GSA), M-04-04