Tony Mays



Biography

Father, husband, native Arkansasan living in Northwest Arkansas with a passion for all things related to cybersecurity, software development, and running.

Distinguished Software Engineer and Architect with 24 years of software development, application architecture, information security, and product management experience.

  • 24 years of Software Development and Application Architecture.
  • 7 years of Information Security experience.
  • 3 years of Product Management.
  • Technical leader and mentor.
  • Dedicated to high quality, efficient, and agile ways of working.
  • Dedicated to high quality and efficient delivery of software.
  • Dedicated to the development of team culture and associate growth.

Table Of Contents


Contact


Certifications

Year Certification
2018-03 Certified Information Systems Security Professional (CISSP)
2019-11 GIAC Secure Software Programmer-Java (GSSP-JAVA)
2021-01 Certified Cloud Security Professional (CCSP)
2023-04 GIAC Public Cloud Security (GPCS)


Skills

  • Application & System Architecture
  • Microservices Architecture
  • Product Management
  • Leadership
    • Extreme Ownership Leadership Principles Methodology
  • Security
    • Thales KeySecure appliances, Thales CipherTrust Manager appliances
    • Cryptography
  • Compliance
    • Payment Card Industry Data Security Standard (PCI DSS)
    • Personal Identifiable Information (PII)
  • Orchestration
    • Walmart Cloud Native Platform (WCNP)
    • Ansible
  • CI / CD
    • Looper (e.g., Jenkins)
    • Concord
  • Cloud Platforms
    • Google Cloud Platform (GCP)
  • Programming Language Expertise
    • Java
    • JavaScript
    • Bash scripting
    • HTML, CSS
    • Spring Boot / Spring



Experience

Distinguished Software Engineer, Cybersecurity

Walmart Global Tech / May 2022 - Present

Team lead and lead security software engineer for the cryptography suite of applications that secure every transaction made over electronic payment instruments like credit card, debit card and more for Walmart’s physical stores business. Our payment application secures approximately twenty million unique payment transactions in a single day and eight billion unique payment transactions annually within the stores business alone, protecting the integrity and confidentiality of customers’ payment card data on each of those transactions. In addition to serving the needs of Walmart and our customers, the cryptography suite needs to comply with standards and regulations like Payment Card Industry Data Security Standard (PCI DSS) and Payment Card Industry Point to Point Encryption (PCI P2PE).

Leading the transition of the re-architecture of Walmart’s payment cryptography application suite to be more scalable to meet new business demands. Which has included the modernization of the payment suite of applications from an on-premises data center environment to a cloud environment.

Leading an enterprise-wide initiative to consolidate, streamline and centralize the payment cryptography portfolio across Walmart’s payment use cases.

Team lead and lead security engineer for the cryptography suite of applications that are utilized to secure data in a manner that complies with industry best practices, standards, and regulations like PII and HIPAA.

As part of my role, I provide recommendations to product teams within Walmart to help make design decisions from the data security perspective. The Walmart Global Risk and Compliance team consult with myself and my team members during design reviews or when integrating or acquiring a third-party vendor product, to obtain our feedback from a data security perspective.

Created and implemented a Product Management strategy and ways of working for the entire Cryptography Services area. This included identifying the appropriate Product Management Strategy to implement for the area. Then identifying how the current applications and processes should be organized into Product Lines, Products, Capabilities, and Features.

Lead and maintain the product strategy and product roadmaps for Payment Cryptography, Cryptography Services, and limited products within Certificate Lifecycle Management.

Created and maintain a repository of Career Growth resources for mentees and associates within my area.

Created and lead a leadership series based upon the Extreme Ownership – Leadership principles. This included leading the sessions with the seniors in my area to align on the leadership principles then the evaluation of our team leadership against the principles. Then creating action plans to address the identified opportunities.

Created and lead an initiative to formulate a skills inventory for each team within my Senior Director’s area.

Skills: Continuous Integration and Continuous Delivery (CI/CD) · Looper (e.g. Jenkins) · Payment Card Industry Data Security Standard (PCI DSS) · Bash · Thales KeySecure appliances · Thales CipherTrust Manager appliances · Google Cloud Platform (GCP) · Java · Spring Boot · Spring Framework · Cryptography · Python (Programming Language) · Ansible


Principal Software Engineer, Cybersecurity

Walmart Global Tech / January 2017 - May 2022

Team lead and lead security software engineer for the cryptography suite of applications that secure every transaction made over electronic payment instruments like credit card, debit card and more for Walmart’s physical stores business.
Our payment application secures approximately twenty million unique payment transactions in a single day and eight billion unique payment transactions annually within the stores business alone, protecting the integrity and confidentiality of customers’ payment card data on each of those transactions. In addition to serving the needs of Walmart and our customers, the cryptography suite needs to comply with standards and regulations like Payment Card Industry Data Security Standard (PCI DSS) and Payment Card Industry Point to Point Encryption (PCI P2PE).

Leading the transition of the re-architecture of Walmart’s payment cryptography application suite to be more scalable to meet new business demands. Which has included the modernization of the payment suite of applications from an on-premises data center environment to a cloud environment.

Leading an enterprise-wide initiative to consolidate, streamline and centralize the payment cryptography portfolio across Walmart’s payment use cases.

Team lead and lead security engineer for the cryptography suite of applications that are utilized to secure data in a manner that complies with industry best practices, standards, and regulations like PII and HIPAA.

As part of my role, I provide recommendations to product teams within Walmart to help make design decisions from the data security perspective. The Walmart Global Risk and Compliance team consult with myself and my team members during design reviews or when integrating or acquiring a third-party vendor product, to obtain our feedback from a data security perspective.

Skills: Continuous Integration and Continuous Delivery (CI/CD) · Looper (e.g. Jenkins) · Payment Card Industry Data Security Standard (PCI DSS) · Bash · Thales KeySecure appliances · Thales CipherTrust Manager appliances · Google Cloud Platform (GCP) · Java · Spring Boot · Spring Framework · Cryptography · Python (Programming Language) · Ansible


Technical Co-Founder, Soulhart

Soulhart / August 2016 - December 2018

Built a social commerce platform for artists and art lovers. Co-lead security software engineer and co-lead software engineer for the AWS platform of Soulhart. This included the following areas of security engineering and software engineering.

Identity and Access Management

Responsible for the design, implementation, and maintenance of Identity and Access Management (IAM) for Soulhart users on all company applications and all AWS Web Services assets utilized by Soulhart. This included the IAM design, setup, and maintenance of developers and users that have access within AWS and non-AWS platforms. Included the access control design, setup, and maintenance of AWS assets. Assets included Simple Storage Service (S3), DynamoDb, Simple Queue Service (SQS), Simple Email Service (SES), Elastic Beanstalk instances, and EC2 instances.

Software Development and Security

Responsible for the design, development, implementation, and maintenance of Soulhart’s RESTFul services and Asynchronous processing platforms.

Security Engineering

Responsible for the design, development, and implementation of code within the Soulhart RESTFul Services to help mitigate against common vulnerabilities within Web Based and Mobile based systems. Implemented HTTPS and X.509 Certificates for Soulhart RESTFul Services platform on AWS Web Services. Implemented JSON Web Tokens (JWT) (with JWS & JWE) and digital signatures within the RESTFul Services platform to assure the message was sent from the claimed sender to assure the intentional or unintentional modification of service requests.


Principal Software Engineer

Walmart Global Tech / September 2012 - January 2017

SSO Enablement projects

  • Lead the research and development of an authentication solution for Single Page Applications and RESTful services.
  • Lead the research and implementation of authentication solution for Real Estate eClosing application. Included leveraging SAML2 with Ping Federate and Spring-Security-SAML.
  • Participated in the design of the authentication approach for the Walmart Hybrid Mobile platform and the SAP platform. Real Estate IoT
  • Included implementing a real-time event processing platform for Refrigeration, HVAC, and Energy sensor readings from Walmart US stores. Included implementing an alarm management and predictive analytics solution for determining and creating service requests for technicians
  • Co-lead the overall architecture design, evaluation, and selection of the Event Stream Processing technology (e.g., IBM InfoStreams) and entire IoT platform
  • Installed the base environments for Kafka, Zookeeper, and IBM InfoStreams

Real Estate Facilities Maintenance Mobility

  • Included implementing a mobile application solution for facility technicians, Store Managers, and Facilities support groups
  • Lead the platform evaluations for several mobile platforms & approaches
  • Developed a Hybrid Mobile application prototype to validate the capabilities of the Walmart Enterprise Mobile platform

GNFR Supplies Mobility

  • Included implementing a mobile application solution for Walmart Store associates to order Department 99 supplies
  • Lead the platform evaluations for several Mobile platforms & approaches
  • Developed a Hybrid Mobile application prototype to validate the capabilities of the Walmart Enterprise Mobile

GNFR UK & North America

  • Co-technical lead for implementing SAP Procure to Pay and Source to Contract functionalities utilizing the SAP SRM & SAP ECC platforms

Skills: Java, Spring, Spring Boot, JavaScript, HTML, CSS, AngularJS 1.x.x, Ionic 1.x, Apache Cordova, IBM InfoStreams, SAPUI5, SAP, and ABAP


Staff Software Engineer

Walmart Global Tech / December 2008 - September 2012

  • Overall technical lead for a project team of approximately 36 developers for the Financial Shared Services Imaging & Workflow project.
  • Project lead and lead application architect for the Profit – Financial Shared Services Imaging & Workflow project for North America. This project utilized the BPM product IBM Lombardi Teamworks, the integration product IBM Message Broker, imaging product Knowledge Lake, the development environments for .Net web technology and mainframe technology. The system processed 2 million transactions and 125,000 new documents requests per day using service oriented architecture, connecting Lombardi TeamWorks and DB2 using CICS Web Services.
  • Project lead and lead application architect for the Profit – Financial Shared Services Imaging & Workflow project for Mexico.
  • Project lead and lead application architect for the SAP integration of the Financial Shared Services Workflow system for North America and Mexico. This project included the integration of the Enterprise standard BPM product Lombardi Teamworks with SAP utilizing IBM Message Broker as the integration layer.
  • Utilized the following programming languages and scripting: Java, ASP.Net, VB.Net, VB Script, JavaScript, HTML, CSS, C, C++, Visual Basic, Cobol, and Bash
  • Utilized the following platforms / operating systems: IBM Lombardi Teamworks, Unix, Windows, Windows Server, OS/390, DB2, CICS, and Informix


Software Systems Analyst

Walmart Global Tech / March 2008 - December 2008

  • Team lead and Software Systems Analyst for the Accounts Payable software development team within the Global Technology department
  • Project lead and lead designer for the Image Fed Workflow project (Real Estate Store Planning) thru the complete project life cycle. This included completing all required ISDLC documents and directing between seven & nine development resources. The Image Fed Workflow project technologies included a Captiva InputAccel scanning and indexing system, Lombardi Enterprise BPM system, and .Net web services
  • Coordinated the overall development and maintenance of Accounts Payable client server systems for twelve countries
  • Facilitated the standards and procedures for code reviews, testing reviews, and implementation reviews for Accounts Payable client server systems
  • Directed the design, development, and implementation of the APNIU invoice entry application for the India acquisition
  • Utilized the following programming languages and scripting: Java, ASP.Net, VB.Net, VB Script, JavaScript, HTML, CSS, C, C++, Visual Basic, Cobol, and Bash
  • Utilized the following platforms / operating systems: IBM Lombardi Teamworks, Unix, Windows, Windows Server, OS/390, DB2, CICS, and Informix
  • Participated in on-call support for the Accounts Payable mainframe & client server systems


Software Programmer Senior Analyst

Walmart Global Tech / August 2005 - March 2008

  • Team lead and Senior Software Programmer Analyst for the Financial Services software development team within the Global Technology department
  • Led the multi-team project that developed and implemented a new Product Care Plans (Extended Warranties) system for Wal-Mart Stores – United States. This included coordinating with four store systems teams and production rollout to complete Wal-Mart Stores chain before Thanksgiving 2006
  • Responsible for the completion of system enhancements for the signature capture process for the PCI project for the ISD Treasury team
  • Utilized the following programming languages and scripting: Java, ASP, VB Script, JavaScript, HTML, CSS, C, C++, Visual Basic, Cobol, and Bash
  • Utilized the following platforms / operating systems: Unix, Windows, Windows Server, OS/390, DB2, CICS, and Informix
  • Facilitated the development of a customer support application for the Wal-Mart shopping card system
  • Participated in on-call support for the Financial Services mainframe & client server systems


Software Programmer Analyst

Walmart Global Tech / May 2003 - August 2005

  • Team lead and Software Programmer Analyst for the Accounts Payable software development team within the Global Technology department
  • Assisted and coordinated the overall development and maintenance of Accounts Payable client server systems for eleven countries
  • Assisted in the development of an invoice data entry application for ten countries
  • Participated in the design, engineering, and implementation of the Post Audit Data Warehouse. The goal of the project was to implement a financial audit system. The system consisted of 30 TB of financial data and allowed the post audit team to mine the data to identify overpayments that Wal-Mart made. During the project, I researched multiple areas of financial data and consolidated them into a single data warehouse using a star schema database design. The tool was able to scan through a year of data and return potential overpayments that the users would attempt to recover from the vendors. The system recovered $250 million in overpayments annually.
  • Utilized the following programming languages and scripting: ASP, VB Script, JavaScript, HTML, CSS, C, C++, Visual Basic, Cobol, and Bash
  • Utilized the following platforms / operating systems: Unix, Windows, Windows Server, OS/390, DB2, CICS, and Informix
  • Participated in on-call support for the Accounts Payable mainframe & client server systems


Software Programmer

Walmart Global Tech / May 2000 - May 2003

  • Software Programmer within the Accounts Payable software development team within the Global Technology department
  • Assisted and coordinated the overall development and maintenance of Accounts Payable client server systems for eleven countries
  • Assisted in the creation of standard procedures and standard documents for code reviews, testing plans, and implementation reviews for the Accounts Payable team
  • Assisted in the development of an invoice data entry application for ten countries
  • Assisted the ISD Accounts Receivable team in the completion of SOX compliance system enhancements for the COOPS and DEALS applications
  • Utilized the following programming languages and scripting: ASP, VB Script, JavaScript, HTML, CSS, C, C++, Visual Basic, Cobol, and Bash
  • Utilized the following platforms / operating systems: Unix, Windows, Windows Server, OS/390, DB2, CICS, and Informix
  • Participated in on-call support for the Accounts Payable mainframe & client server systems


Intern

Walmart Global Tech / January 2000 - May 2000

  • Full time internship during college working on the Accounts Payable software development team within the Global Technology department
  • Developed Accounts Payable client server system enhancements for the ASDA acquisition and integration with Walmart systems
  • Utilized the following programming languages and scripting: ASP, VB Script, JavaScript, HTML, CSS, C, C++, Visual Basic, Cobol, and Bash
  • Utilized the following platforms / operating systems: Unix, Windows, Windows Server, and OS/390


Intern

Walmart Global Tech / May 1999 - January 2000

  • Summer internship within the Information Systems Audit team within the Internal Audit department
  • Awarded the Genesis Award at the 1999 Internal Audit Year End Banquet
  • Assisted in the completion of Year 2000 audit review
  • Assisted in the completion of year-end Payroll audit review



Accomplishments

Year Accomplishment
2020-12 Making a Difference Award (MADA)
2020-01 Digital Disruption (Team Award)
2016-09 STAR Award
2010-05 Associate of the Quarter
2010-04 Associate of the Month
2009-09 Associate of the Month
2008-05 Associate of the Month
2004-12 Team of the Year
2001-12 Excellence in Customer Service (Team Award)
1999-12 Genesis Award


Education