Summary
Overview
Work History
Education
Skills
Certification
Interests
Timeline
Generic

Jonathan Broek

Cloud Security SME, Vulnerability & Penetration Tester, Threat Hunter
North Kansas City,MO

Summary

I am a seasoned security leader with a passion for cloud technology, virtualization, firewalls, automation and overall security best practices. I have worked in almost every facet of Information Security with an emphasis on next generation firewall management, cloud security, vulnerability assessment/management, risk management, endpoint security, application control, incident response, threat hunting, siem, security engineering, development and people management. Most recently I have been acting as Founder/CEO of a startup called Tenfold Security which specializes in Cloud Security Solutions. Tenfold is building SaaS solutions to assist customers with Cloud Security & Compliance, Next Generation Penetration Testing and building secure, hardened cloud environments and systems. I am someone that is known by my colleagues and industry peers as knowledgeable, friendly, helpful, easy to work with and always willing to volunteer for the hard tasks. In previous positions I have managed fleets of Palo Alto firewalls on a global scale. Both physical and virtual/cloud based firewalls and locally managed/centrally managed devices. I have deep knowledge of configuration and security best practices across the entire Palo Alto stack including Prisma Cloud, Prisma Access and Global Protect.

Overview

14
14
years of professional experience
11
11
years of post-secondary education
13
13
Certifications

Work History

CEO

Tenfold Security Inc.
03.2021 - Current
  • Founder and CEO of Tenfold Security, a cloud focused cybersecurity solutions startup
  • Overseeing all aspects of company/product vision, software development, go to market strategy, sales and business development
  • Consulting on security architecture, design and execution
  • Executing engagement based Hybrid Penetration Testing for clients on-premise and cloud based networks and systems. Scoping, Planning, Reconnaissance, Scanning, Enumeration, Exploitation, Lateral Movement, Exfil, Reporting and Review
  • Building cloud security and compliance automation
  • Actively working on coding and development for several of Tenfold's SaaS applications and automation tools primarily utilizing Python, PowerShell, Boto3 and the Microsoft Graph API
  • Leadership, mentorship, project management and solution implementation

Manager, Security and Emerging Technologies

Cboe Global Markets Inc.
01.2021 - 12.2021
  • Managed focused team tasked with identifying emerging technologies for cybersecurity and implementing them across the organization
  • All aspects of new security solution deployment including, identifying gaps, researching solutions, scoping, testing, comparison, purchasing, initial buildout, implementation, documentation and handoff to the security operations and engineering teams
  • New solutions such as UEBA, CI/CD and Code Repository Security, Internal Red Teaming and enhanced Cloud Security
  • Continued to oversee, develop and deploy all aspects of the organizations Cloud Security program including training other security teams

Manager, Network & Cloud Security

Cboe Global Markets Inc.
02.2020 - 01.2021
  • Designed and implemented an end to end security program for our growing number of AWS accounts and workloads. Focused on utilizing native services like SecurityHub, CloudTrail, CloudWatch, Config, Inspector, CloudFormation and Firewall Manager
  • Formalized documentation for our AWS Security Baseline and created policy to support it
  • Implemented an organizational structure and a centralized access management system for all AWS accounts utilizing ControlTower and AWS Single Sign On
  • Oversaw all day to day cloud security and compliance for AWS, Azure and Office 365 through the SecurityHub, Prisma and Microsoft Cloud App Security consoles
  • Designed, tested and implemented a new VPN solution for production system access utilizing Prisma Access, GlobalProtect and local firewalls
  • Created extensive documentation on the VPN architecture and troubleshooting steps for support staff
  • Continued to work with other business leaders to plan, design and implement security for new partner/acquisition connections, remote access needs and connectivity to both on-premise and cloud based systems
  • Daily project management and oversight for all things related to the organizations network security programs

Team Lead, Network Security Operations

Cboe Global Markets Inc.
01.2019 - 02.2020
  • Completed migration of all production trading and corporate communications from our headquarters data center and office location from Check Point to Palo Alto
  • Transitioned the RedLock cloud security solution to the Palo Alto Prisma Cloud security solution and refined a process for managing/monitoring our AWS accounts
  • Formation of a true firewall/network/cloud security team
  • Migration of all Palo Alto firewalls to Panorama central management including custom template stacks for all
  • Implementation of Skybox for firewall/network configuration compliance, change tracking and path analysis
  • Oversaw all day to day operations of the team, firewalls and other security systems
  • Extensive project and personnel management
  • Project planning, budgeting, purchasing and many other management functions
  • Extensive firewall procedural documentation and diagramming

Senior Security Specialist

Cboe Global Markets Inc.
02.2018 - 02.2019
  • Implemented virtualized Palo Alto firewalls in an AWS Transit Gateway to protect one our websites
  • Implemented the RedLock cloud security and compliance monitoring solution on all of our AWS accounts
  • Planned, executed and completed project to replace the McAfee Security Suite with Cylance and Carbon Black for the entire organization globally
  • Worked with the CISO to develop a proprietary risk assessment program for the organization and built it into a fully functioning application within the Onspring platform
  • Implemented the RestorePoint automated backup solution for all firewalls and other security tools/systems
  • Daily oversight and management of all Palo Alto and Check Point firewalls

Security Specialist

BATS Global Markets
07.2015 - 02.2018
  • Vulnerability scanning, mitigation and patch management validation
  • Performed risk assessments on individual systems and the corporate infrastructure as a whole across multiple locations
  • Enhanced endpoint security architecture, testing and implementation (Cylance and Carbon Black Response)
  • Incident Response procedural planning and documentation
  • Business continuity/disaster recovery planning and testing
  • Daily management of Firewalls, Web Filter, Email Filter, Anti-Virus, MDM and APT Security Solutions
  • Revision of all IS policies and procedures
  • Ongoing threat intelligence gathering, review, reporting and taking action against credible threats
  • Overseeing physical security procedures as well as managing electronic access systems and surveillance equipment

Network Security Analyst

Board of Public Utilities
03.2013 - 07.2015
  • Oversaw day to day operations of all deployed security layers including Firewalls, Load Balancers, IPS, Mail Filters, Anti-virus, Application Control, MDM, Incident Response and Privilege Management
  • Project Planning, budgeting and involvement in all major decisions involving the security of the BPU corporate network
  • Working with other teams to deploy new web applications and ensure they are properly secured
  • Securing wireless networks in house and across the county
  • Firewall upgrades, replacements and new deployments
  • Contribution in ongoing network/firewall re-design
  • Complete replacement and upgrade of the companies RSA Secure Authentication Systems
  • Transitioned from Windows Server 2003 and physical hardware to Linux based virtual servers across three different vlans and two different VMware hosts for disaster recovery
  • Key role in deploying and managing Carbon Black Application Control including product comparison, POC's, setup, testing, policy/rule creation, deployment, training and day to day management
  • Served as team lead for the NERC Compliance Cyber Security Incident Response Team

Network Security

Results Technology
12.2011 - 03.2013
  • Member of the Network Security Team at the Board of Public Utilities
  • Monitoring firewall and IPS logs, investigating suspicious network traffic, analyzing malicious emails and watching for all potential threats to the company network
  • Malware removal, incident investigation, tracking and documentation
  • Administration of Websense, IronMail, ScanMail, Trend Anti-virus, RSA Authentication, Imprivata, TippingPoint and CheckPoint
  • Responsible for patching and regular maintenance of all the Network Security Servers
  • Defined a clear-cut procedure for hardening, imaging and managing all of BPU's laptops
  • Implemented a secure solution for walk-in applicants to have the ability to apply for a job through Peoplesoft while keeping the rest of the network safe from intrusion
  • Key role in designing, testing and implementing Windows 7 Group Policy Structure

Desktop Support

Results Technology
03.2011 - 12.2011
  • Member of the Desktop Support Team at the Board of Public Utilities
  • Experience installing, configuring, administrating and troubleshooting Windows XP, 7 and Server 2008 components in a Domain environment
  • Extensive experience troubleshooting and repairing desktops, laptops, printers, A/V equipment and other electronic devices
  • Experience with remote management, imaging, and software deployment
  • Worked as editor and administrator of the BPU Knowledge Base
  • Recognized by coworkers as someone who was always willing to take on a challenge

Education

Networking And Security Program

Western Governors University
Online
06.2017 - Current

Networking And Telecommunications Program

Metropolitan Community College - Kansas City
Kansas City, KS
01.2013 - 06.2015

IT Administration Program

Centriq Training
Leawood, KS
10.2010 - 04.2011

Skills

Palo Alto

AWS/Azure

Cloud Technology/Security

Firewall Management

Prisma Cloud/Prisma Access

Vulnerability Management

Nessus

Cylance

Carbon Black

Ethical Hacking/Penetration Testing

Kali Linux

OWASP

Cloud/Application API

Documentation/Reporting

Prisma Access

Python/PowerShell

Certification

Certified Information System Security Professional (CISSP)

Interests

Support of the Big Brothers Big Sisters Adopt-A-Family program, 2011-2021

Spending time with my wife, kids, extended family and friends

Learning new technologies, coding and security testing

Video Games, movies and music of all kinds

Physical security and camera systems

Archery, shooting, hunting and fishing

Timeline

CEO

Tenfold Security Inc.
03.2021 - Current

Manager, Security and Emerging Technologies

Cboe Global Markets Inc.
01.2021 - 12.2021

Manager, Network & Cloud Security

Cboe Global Markets Inc.
02.2020 - 01.2021

Team Lead, Network Security Operations

Cboe Global Markets Inc.
01.2019 - 02.2020

Senior Security Specialist

Cboe Global Markets Inc.
02.2018 - 02.2019

Networking And Security Program

Western Governors University
06.2017 - Current

Security Specialist

BATS Global Markets
07.2015 - 02.2018

Network Security Analyst

Board of Public Utilities
03.2013 - 07.2015

Networking And Telecommunications Program

Metropolitan Community College - Kansas City
01.2013 - 06.2015

Network Security

Results Technology
12.2011 - 03.2013

Desktop Support

Results Technology
03.2011 - 12.2011

IT Administration Program

Centriq Training
10.2010 - 04.2011

Similar Profiles

CREATE PROFILE
Jonathan BroekCloud Security SME, Vulnerability & Penetration Tester, Threat Hunter