Daniel Di Carlo
Mesa,AZ
Summary
Graduate of Northern Arizona University's inaugural cybersecurity class. Current Product security analyst for Early Warning Services on their Identity product line. My regular duties consist of attending standups to assure that security measures are being addressed as well as monitoring current security vulnerabilities.
Overview
4
4
years of professional experience
1
1
Certification
Work History
Product Security Analyst
Early Warning Services
03.2022 - Current
- Closed one third of all security related tickets that related to my products
- Set up, coordinated, and monitored 4 external penetration tests, one internal penetration test, documented results and improvements for external access for future tests
- Set up and monitored Gitlab pipelines for 11 repositories that compile code, run SAST/SCA scans (Veracode, Fortify, Snyk), and upload artifacts to Artifactory
- Created Semgrep rules to detect Kubernetes vulerabilities, Docker misconfiguration, and unusual ASCII characters
- Created a Confluence page to monitor all vulnerabilities in my assigned products as well as next steps to take for each one
- Attended three daily standups to advise on security related matters
- Created a weekly report through the development on a wallet product on required security controls and their status
Cybersecurity Intern
Early Warning Services
01.2021 - 03.2021
- Created a python script that, when given an endpoint, will scan for insecure network protocols and ciphers as well as self signed certificates
- Created a Plextrax runbook to test for Jason Web Tokens (JWTs)
- Analyzed a threat model and suggested improvements to it
- Analyzed over 300 SAST findings and made recommendations on next steps to resolve them
Cybersecurty and Python Teaching Assistant
Northern Arizona University
01.2019 - 04.2020
- Held office hours multiple times a week
- Graded homework, tests, and finals
- Taught students how to code securely in C
- Taught a weekly python lab and assisted students throughout it
Education
Bachelor of Science - Cybersecurity, Computer Science
Northern Arizona University (NAU)
Flagstaff, AZ05.2022
Skills
- Risk Mitigation
- Web Security
- Threat Research
- Splunk
- Jira
- Confluence
- Linux
- Python
- Gitlab
Certification
- AWS- Certified Cloud Practitioner
- Gitlab - Certified Security Specialist
- Comptia - Security+ (expected June, 2023)
Timeline
Product Security Analyst
Early Warning Services
03.2022 - Current
Cybersecurity Intern
Early Warning Services
01.2021 - 03.2021
Cybersecurty and Python Teaching Assistant
Northern Arizona University
01.2019 - 04.2020
Bachelor of Science - Cybersecurity, Computer Science
Northern Arizona University (NAU)
Similar Profiles
Charlie NealCharlie Neal
Senior Client Data Contribution Analyst at Early Warning ServicesSenior Client Data Contribution Analyst at Early Warning Services
Inna MartinInna Martin
Settlement Operations Lead at Early Warning Services, LLCSettlement Operations Lead at Early Warning Services, LLC
Tom TullochTom Tulloch
Senior Director, Business Development at Early Warning Services LLCSenior Director, Business Development at Early Warning Services LLC