David Florek Email & Phone Number

Deerfield, Illinois, US

• Worked on threat model reports and security risk assessments for medical and non-medical devices
• Performed vulnerability, container, and web application scans using Tenable.io
• Used Fortify SCA to perform static application security scans of GitHub code repositories and find vulnerabilities
• Used Agile, Confluence, and JIRA to approve documents, submit workflow tickets, and view product documentation
• Worked with team members to draft product requirements
• Created Python and Powershell scripts to generate Swagger JSON files from a list of REST URL endpoints for use in Tenable.io API scans

Herndon, Virginia, US

• Deployed Qualys Cloud vulnerability agents across user workstations in-addition to an on-prem scanner appliance, migrated asset lists and dashboards, and setup daily scans as part of a migration test phase from.
• Created custom Windows and Linux audit rules by leveraging existing Tenable audit files and web resources to target specific Windows Registry and SE Linux settings for compliance scans
• Reviewed custom Docker and Linux audit rules in Prisma Cloud and provided recommendations to colleagues and senior system security officers for compliance requirements
• Used Tenable.sc to troubleshoot a number of technical issues associated with failed credentials, scan account lockouts, inaccurate DNS hostnames, and firewalled subnets using plugin output from vulnerability scan data
• Expanded on an improperly configured Tenable.sc installation inherited from previous system administrators in order to maximize existing product capabilities, exceed operational requirements, and extend network malware.
• Restructured existing compliance, vulnerability, and malware scans in Tenable.sc to improve scan performance and network coverage and optimized Tenable Nessus scanners and Qualys Cloud agents to better utilize existing.

• Developed an automatic data retrieval system using Python REST API calls for consumption by research teams by pulling data from client information platforms and parsing raw JSON and CSV data into a PostgreSQL database.
• Created Ansible playbooks to automatically provision VMWare ESXi virtual machines, deploy Ubuntu operating systems, generate Nagios Core config files, administer SSL certificates, provision user accounts with SSH.
• Deployed Let’s Encrypt SSL certificates on internal and external servers using both HTTP-01 and DNS-01 challenge methods complete with autorenewal capability and automated Python email alerts to ensure SSL certificates.
• Created Powershell scripts to automatically backup and restore Tableau Server instances on a periodic basis and archive Salesforce cloud data using the ANT Migration Tool and DataLoader for Windows
• Administered Tableau Server 2019.1, GitLab 11.10, Ansible, Nagios Core, Dell Rapid Recovery, and other internal systems by extending deployments, applying software upgrades and maintenance patches, and working with.
• Provided advanced support for Tableau Server and Desktop issues with workbooks, SQL database connections, user/site/dashboard permissions, dashboard publishing, and post-upgrade bugs before escalating to Tableau support

Vienna, Virginia, US

• Used Amazon AWS to deploy pre-configured micro instances for evaluation with future development projects and provided Microsoft Azure recommendations
• Deployed closed and open-source security solutions on Dell PowerEdge (9,11, and 12 generation) servers, configuring RAID partitions managed by Dell PERC
• Setup and deployed VMWare ESXi instances for integration and management with VMWare vCenter and mitigated vulnerabilities on older ESXi versions
• Deployed ELK stack with a co-worker to work a temporary SIEM solution for log analysis
• Deployed Salt Stack as a remote configuration and patch management tool to control development and production servers as well as Tenable Nessus scanners
• Redeployed Myricom 10G Sniffer and Intel-based fiber NIC cards on CentOS 7 to achieve high-performance packet capturing with Bro IDS and Suricata

• Developed scripts using Bash and Python to automatically add and remove hosts in Nagios Core 4 and provide expanded information reported back to Nagios Core via a NRPE plugin for further development
• Worked on developing a customized Python script to query a MySQL database to pinpoint and troubleshoot a bug causing an application setting to be incorrectly triggered
• Assisted in troubleshooting a deployment issue with Splunk Enterprise
• Collaborated with a team to develop Puppet manifests to deploy and modify packages on CentOS servers to mitigate potential vulnerabilities
• Worked with a team member to manage logrotate setups and resolve performance issues with unexpected results

Vienna, Virginia, US

• Provided analysis of suspicious emails and classified them as phishing, spear phishing, spoof, or spam for further action and triage
• Analyzed US-CERT bulletins, alerts, malware reports, and system event logs to block malicious threat indicators
• Used HP ArcSight in conjunction with customized internal tools to scrutinize suspicious network traffic and locate users or machines that may have been compromised
• Analyzed.pcap files using Wireshark and RSA NetWitness Community Investigator to ascertain whether users acted on phishing emails or they downloaded and executed potential malware
• Drafted security incident reports and to be sent to various ISSO groups for follow-up action
• Used Microsoft Excel to create and plot scatter diagrams to conduct a frequency analysis of IDS alert data from Outlook 2010 emails to further correlate incidents and understand the habits of potential adversaries

Falls Church, VA, US

• Assisted customers with Cisco AnyConnect VPN, Blackberry, Outlook 2007/2010, PIV card, Listserv, RSA SecurID token, and laptop issues in-person, via telephone, or through the ServiceNow ticketing system
• Adhered to contractual agreements when assisting supported customers to ensue service level agreements were met for reporting incidents
• Used Exchange Management Shell commands to query the logs of an Exchange 2007 server to resolve issues related to blocked, undelivered, or lost email
• Drafted knowledge base articles to assist current and future service desk technicians

Sterling, VA, US

• Assisted customers with Cisco AnyConnect VPN, Blackberry, Outlook 2007/2010, PIV card, Listserv, RSA SecurID token, and laptop issues in-person, by phone, or through the ServiceNow ticketing system
• Adhered to service level agreements while assisting customers
• Used Exchange Management Shell to check Exchange 2007 server logs and resolve issues related to blocked, undelivered, or lost email
• Drafted knowledge base articles to document current procedures and general knowledge of existing processes

Baton Rouge, LA, US

• Used Wireshark to locate and notify computer owners of suspected malware flagged by an IPS System
• Deployed Windows Updates using WSUS on test systems to evaluate update impact before deploying patches production-wide
• Used Active Directory 2008 to update profiles, remove password lockouts, and add Exchange 2010 email groups
• Created client assessment reports and network diagrams using Microsoft Visio 2010
• Used Citrix GoToManage to remotely connect to client computers to resolve issuesTracked and reconciled hardware, software, and AD profile issues using the Numara TrackIT! ticketing system
• Deployed Windows 7 operating systems across an enterprise network using PXE boot, ensuring proper backup of files prior to initiating the upgrade

Bs, Engineering

Water Resources Engineering