Kyle McConnell

This position is a contract position and is in support of the US Indo Pacific Commands Mission.

• ACAS Administrator for SIPR and NIPR networks
• Investigate alerts, errors, and intrusions.
• Utilized Splunk to view notables and all system logs.
• Forescout Administrator for US Indo Pacific Command HQ.
• Recommend improvements to security software such as ACAS and Forescout.
• Performed System Administration for Red Hat Linux Distributions and CND software.
• Overhauled the scan schedule to ensure system functionality as well as minimize downtime and rollover scans.
• Assisted in incident response.
• Notified the appropriate teams of vulnerabilities.
• Ensured STIG compliance of all systems.
• Utilized Splunk to analyze logs and events.
• Report
• Setup reporting of ACAS scans to the appropriate teams.
• Utilized security tools to identify incidents within the Command.
• Conduct continuous assessments of cybersecurity posture using tools like ACAS, CMRS, ESS, C2C, and Splunk SIEM, and collaborating closely with other cybersecurity professionals to ensure effective compliance strategies are in place.
• Maintain STIG compliance, reviewing service tickets, developing Certified Network Defender (CND) workflows in ServiceNow, and ensuring all systems meet DoD PKI requirements.
• Proactively analyzes system deficiencies, recommends engineering solutions, and resolves complex problems.
• Manage and administers Nessus Security Manager, scanners, and Network Monitor, configuring and maintaining these tools, and troubleshooting issues.
• Regular reporting on accomplishments, issues, and suggestions for improvements across the board.

• Responsible for monitoring and responding to security incidents.
• Let the incident response team in detecting, identifying, and alerting of all possible attacks.
• Responsible for the infrastructure.
• Participated in Change Management and documented everything.
• Provide architecture design for all 120 locations during infrastructure upgrade.
• Designed and managed Microsoft Sentinel (SIEM Solution)
• Used Splunk to assess logs and alerts, to perform analysis of Security Events. Eventually upgraded to MS Sentinel.
• Adhered to technology budget set by the Vice President of Technology
• Analyze security alerts, investigate potential threats, and take swift actions to mitigate risks.
• Conducted project management to ensure all end goals were met in a timely manner.
• Developed plans to meet milestones set for projects and stayed on track for project completion based on dates set.
• Designed, implemented, and maintained security solutions and infrastructure.
• Managed 120 networks for all of our branches across the United States.
• Managed Cisco devices to include routers and switches using CLI and GUI based interfaces.
• Configured and deployed Cisco Meraki Firewalls, Switches, Access Points, and Sensors across many branches. Responsible for overseeing EDR software and mitigating threats.
• Created seperate VLANs to better secure existing networks and worked with Windstream to advertise our routes between branches.
• Performed proactive maintenance to keep all systems up to date and minimize threats and vulnerabilities throughout the networks. Managed on premise Active Directory as well as AD-Synced Active directory.
• Configured alerting for all network devices as it was not previously configured.
• Simplified email compromise and reduced lockout time by 30 minutes by deploying Azure Smart lockout.
• Configured and deployed YubiKeys for all branches to better secure accounts that users shared the password to.
• Support technical staff with advanced consulting projects as SME or Engineer.
• Worked with multiple vendors onsite to troubleshoot connectivity issues between POE devices.
• Discovered firmware issues in the Meraki MX .211 firmware and minimized the affect of the firmware by detecting it early.
• Managed Cisco Duo Authentication.
• Managed Azure AD-SYNC.
• Analyzed network traffic using wireshark.
• Maintained superb documentation.

• Perform daily and weekly backups of servers and network devices.
• Led the incident response team.
• Responsible for the security infrastructure of all clients.
• Utilized various tools to analyze threats, vulnerabilities, and possible insider threats.
• Implemented DLP policies for various clients.
• Configured alerts of all security tools to include EDR (End Point Detection Response, MDR (Managed Detection Response), and RMM tools.
• Deployed new security tools.
• Configured Active Directory to be aligned with a set of standards put in place.
• Created Security Groups and assigned NTFS permission for user assignment.
• Created and deployed group policies for Workstations as well as users.
• Verified backups completed successfully and troubleshot if any issues arose.
• Performed proactive maintenance on client network equipment, servers, and Workstations.
• Performed Cyber Security assessments and determined how we can improve their security.
• Deployed various EDR and MDR solutions to include Sentinel One, BlackPoint, Huntress, Webroot.
• Made all DNS changes for clients and configured spam filter and email tenants for clients.
• Deployed remote agents to allow remote troubleshooting for our technicians.
• Configured entire networks and VLANs to allow network traffic to flow.
• Managed all Wireless Access Points, Switches, and Firewalls.
• Deployed Conditional access to all clients to include country blocking, MFA requirements by security groups, and access by IP.
• Implemented SSO with clients Azure environment.
• Performed onsite Network Administration visits to determine how we can improve and clients network and what things were causing them downtime.
• Worked on various projects with clients to include communicating timelines with them and real expectations.
• Deployed 3rd party MFA solutions to Windows logon and email environments.
• Configured Hybrid environments with On Premise Domain Controllers and Azure AD using Azure AD Connect.
• Migrate Clients from QuickBooks Desktop to QuickBooks online.

• Troubleshot onsite issues.
• Installed switches.
• Performed Workstation configuration and deployed onsite to the client.
• Troubleshot cabling issues to include toning out the cable.
• Suggested software and hardware modifications to reduce lag time and improve overall speed.
• Traveled with sales engineers on customer site visits to respond to specific technical questions.
• Maintained response times to support business continuity.
• Performed backup audit for all of Tampa clients that have backup appliances.
• Onsite visits with clients.
• Analyzed issues to identify troubleshooting methods needed for quick remediation
• Explained technical information in clear terms to promote better understanding for non-technical users.
• Met with team personnel to share details of discovered issues and recurrent customer complaints.
• Advised senior personnel on potential process improvements to increase support
• Quality and expedite ticket fulfillment.

• Maintain JCR BFT (Joint Capabilities Release Blue Force Tracker) and HF (High Frequency) satellite/radio communications for eight companies beneath our Battalion.
• Operate a S6, communications shop as an E4 successfully, it is an E7 position.
• Remain up-to-date on latest technologies and solutions applicable to company products in order to provide best support to end-users.
• Create support documentation that empower and enables the user community to extend skills, leverage system features and find resolutions to questions without intervention from support team.
• Work with software development team on reported errors and bugs on newly released software and assisted in deployment of release fixes.
• Train and support end-users with software, hardware and network standards and use processes.
• Control and manage server room, wireless network, server infrastructure, audiovisual equipment, laptops and video conferencing equipment.
• Acquired in-depth knowledge of company operations, policies and guidelines.
• Utilize database to research, gather, analyze and present data.
• Organize information by studying, analyzing, interpreting and classifying data.