Summary
Overview
Work History
Education
Skills
Certification
Professionalorganizations
Timeline
Generic

Robert McCutchan

McKinney,USA

Summary

Cybersecurity leader at McKesson with a track record of enhancing security posture through risk analysis and cloud solutions. Achieved 90% improvement in data source ingestion and expert in security regulation compliance and management. Strategic vision and technical expertise ensure robust business continuity planning.

Overview

29
29
years of professional experience
8
8

Certifications

Work History

Lead Information Security Engineer

McKesson
Irving, USA
10.2021 - Current
  • Company Overview: McKesson is the oldest and largest healthcare company in the nation, serving more than 50% of U.S
  • Hospitals and 20% of physicians
  • Hired to lead the Information Security and Risk Management Security Analytics team with primary focus on evaluating the current SIEM and SOAR solution and then optimizing or rearchitecting the environment
  • Manage global data source ingestion, optimization, and tagging with various Business Units
  • Build SOAR automation processes
  • Evaluation SIEM and SOAR technologies for additional capabilities and cost savings
  • Subject Matter Expert within security and risk analytics platforms
  • McKesson is the oldest and largest healthcare company in the nation, serving more than 50% of U.S
  • Hospitals and 20% of physicians
  • Developed detection and remediation plan for Log4J
  • Improved data source ingestion from 60% to 90%
  • Migrated from on-prem Kafka to hybrid Cribl Cloud to recognize ingestion reduction by 40% and significant data quality improvement
  • Member of the Global Purple Team
  • Member of the Threat Detection Center of Excellence

Head of IT Security

DealerBuilt
Grapevine, USA
12.2019 - 10.2021
  • Company Overview: DealerBuilt provides a single-source, integrated Dealer Management System (DMS) platform that empowers dealers to operate their business
  • Hired to develop and spearhead the security architecture and posture for the organization due to a Federal Trade Commission Order to Comply
  • The federal mandate required an alignment with an industry-recognized best practice security framework
  • Designed a 3-year security roadmap with alignment to the CIS Top 20 Controls
  • DealerBuilt provides a single-source, integrated Dealer Management System (DMS) platform that empowers dealers to operate their business
  • Guided the organization through the first FTC audit successfully
  • Achieved alignment with CIS Top 20 Controls Implementation Group 1 in the first year with significant progress to Implementation Group 2
  • Spearheaded the Role Based Access Controls project and implemented access controls in critical systems with Okta, Adaxes, and Active Directory
  • Implemented Asset Management, Patch Management, Change Control, Config Management, and Lifecycle Management programs using ManageEngine Desktop Central and Service Desk Plus
  • Implemented Endpoint Protection and Endpoint Detection and Response with Crowdstrike Falcon Prevent and Falcon Insight
  • Worked with Development and DevOps to enable a Secure Software Development environment
  • Worked with Systems to develop secure gold images and harden the existing infrastructure
  • Worked with Network to identify and block network holes
  • Implemented multifactor authentication and SSO with Okta
  • Worked with Client Systems to make sure the migration from multiple data centers to AWS was properly secured

Senior Lead Security Engineer

Dean Foods
Dallas, USA
11.2018 - 12.2019
  • Company Overview: Dean Foods is one of the nation's leading food and beverage companies, producing a full line of dairy products, founded in 1925
  • Brought on board Dean Foods to develop and lead the newly formed Security Engineering team
  • The main task was to identify the requirements to bring the Security umbrella in-house while developing implementation plans
  • Implemented and tuned SIEM in-house before migrating to a cloud-based solution
  • Took ownership and optimized cloud-based solutions for email security and web content filtering
  • Provided guidance and direction regarding security trends and incidents in the wild
  • Performed report creation and presentation of security health in the environment
  • Developed runbooks to operationalize security product tasks
  • Worked with the Security Analysts to develop appropriate and tuned use cases for the SOC
  • Dean Foods is one of the nation's leading food and beverage companies, producing a full line of dairy products, founded in 1925
  • Rearchitected the Splunk environment, including Enterprise Security, to resolve performance issues and optimize for ~500 ASA firewalls, Checkpoint firewalls, Symantec Endpoint Protection, Blue Coat web content filtering, and Office365 data sources
  • Primary IT Security resource for implementing Cisco ISE to replace TACACS
  • Brought security products in-house from a third-party vendor for better incident response and security posture management
  • This included web content filtering, SIEM, email security, web application firewall, and endpoint protection
  • Led project migrating Splunk to the cloud

Lead Network Security Engineer

JCPenney
Plano, USA
02.2017 - 10.2018
  • Company Overview: JCPenney is one of the largest producers of clothing, shoes, accessories, and household items to be sold in the United States and Puerto Rico, and the Company has a rich history of product development and design dating back to 1914
  • Brought on to build and execute the vision and strategy for the protection environment, including emerging technology, new technical solutions, software and hardware roadmaps, etc
  • For the new company Digital Platform (DP) focus
  • Helped to identify and define system security requirements
  • Engaged with the appropriate stakeholders such as Development, Stores, DP, and Operational teams ensure the security solutions achieve business and operational objectives
  • Designed and implemented security protection solutions such as firewalls, intrusion detection and prevention systems, web application firewalls, load balancers, encryption, VPNs/PKI/IPSEC, etc
  • Defined and implemented security solutions for email and cloud/SAAS protection using Azure, Office365, and Amazon Web Services
  • JCPenney is one of the largest producers of clothing, shoes, accessories, and household items to be sold in the United States and Puerto Rico, and the Company has a rich history of product development and design dating back to 1914
  • Provided key engineering expertise migrating McAfee ePolicy Orchestrator from Azure to on-premise saving the company $200k per month
  • Migrated the Security Information and Event Management (SIEM) from QRadar to McAfee Security Information and Event Management providing a more robust solution and saving the company $400k over three months
  • Implemented Entrust IdentityGuard for two-factor authentication company-wide for Secure Zone, Home Agent VDI infrastructure, and VPN

Senior Cloud and Network Engineer

Cambium Learning
Dallas, USA
09.2015 - 02.2017
  • Company Overview: Cambium Learning creates software and hardware products serving students ranging from PreK to adult..
  • And enabling the educators who help them learn
  • Brought on as a senior member of a distributed highly technical team
  • Responsible for senior level engineering and design for multiple network-based initiatives, including a company-wide DNS redesign and refresh, both internal and external
  • Project lead on re-IPing subnets in the datacenter and moving from a static to dynamic routing environment
  • Provided technical knowledge and experience for end-to-end tasks from design, project planning and implementation
  • Part of the initial security group created for compliance and regulations as applicable to the industry including FERPA and SOX
  • Configure and maintain Juniper SRX and Fortinet Fortigate firewalls and WAF at six offices and two data centers
  • Analyze and remediate QualysGuard scan results
  • Scan internal network for vulnerabilities using OWASP Zap, Nessus, nmap, SiteDigger, and Cain and Abel
  • Cambium Learning creates software and hardware products serving students ranging from PreK to adult..
  • And enabling the educators who help them learn
  • Audited the Voyager Sopris Learning division at the core data center to provide accurate information of age and inventory of the servers and infrastructure
  • Updated existing and implemented new IT security policies
  • Assisted with SOX and SOC2 audits gathering requested information and implementing appropriate controls
  • Performed security audits of two products and discovered vulnerabilities that could be remediated and brought into compliance with OWASP standards
  • Reconfigured internal DNS to optimize logins and authentication between six sites and two data centers
  • Reconfigured external DNS to improve customer performance, resolving site names and providing consistency between zones
  • This reduced support calls by 10%
  • Resolved a performance problem within a day with JDE that caused timeouts during replication
  • This was a major impact on the financial department at quarter-end
  • Restructured and redesigned racks at the Dallas data center in order to recable power and networking, which improved heat transfer efficiency and enabled redundancy to be implemented on all servers

Director of Technical Services

Kofile Systems
Dallas, USA
01.2013 - 09.2015
  • Company Overview: KOFILE, Inc
  • Provides a complete solution for records preservation and data management
  • By merging the strengths of leading companies, KOFILE surpasses industry standards with practical and scientifically-based products and resources
  • Responsible for managing the production, development, and internal technical environments including: vendor relationships, networks, user technical needs, data communication, cloud computing, and remote access
  • Provides oversight for all testing and implementation of new applications and systems as well as upgrades to the current environment
  • Improve reliability and stability of in-house and hosted applications by working with vendor staff to design, execute and continually assess infrastructure and application improvements
  • Lead technical 'deep dives' with 'Hosting' vendor resources to resolve issues and improve operational procedures
  • Provide Executive Leadership with technical information required for implementations, upgrades, and system selections
  • Installed and maintained SonicWALL, WatchGuard, and Juniper firewalls
  • KOFILE, Inc
  • Provides a complete solution for records preservation and data management
  • By merging the strengths of leading companies, KOFILE surpasses industry standards with practical and scientifically-based products and resources
  • Designed and deployed a development and production environment in Microsoft Azure for system development
  • Upgraded the network to a 10G backbone with a fiber ring for redundancy using Cisco Catalyst with a Cisco Nexus switch for the core servers for redundancy and performance
  • Implemented Scale Computing HC3 virtualization cluster and migrated production servers for improved efficiency and 19 TB storage for growth
  • Brought in Time Warner Cable Business Class for WAN performance and reliability
  • Designed and built the onsite Kofile Systems servers and workstations
  • Wrote company-wide security policies and championed employee security education
  • Implemented Cisco Web Application Firewalls (WAF) to protect internet-facing services

Sr. Network/Security Engineer

HBR Technologies
Carrollton, USA
09.2007 - 01.2013
  • Company Overview: HBR Technologies is one of the oldest computer resellers in the Dallas-Fort Worth Metroplex and has been serving the area for over 25 years
  • HBR provides a wide range of computer services and support to a broad client base
  • Responsible for the successful delivery of a wide range of Information Technology services to clients, including server/infrastructure designs and builds, LAN and WAN design and troubleshooting, audits and assessments, penetration testing, and Information Security architecture design, as well as assistance in identifying and implementing Information Security solutions
  • Provide system and network design and implementation for a wide range of customers
  • Advise on technical architecture and technology futures
  • Set up firewalls for new clients and also maintained and troubleshot existing firewall installations; Cisco ASA, WatchGuard, SonicWALL, Juniper, and Checkpoint
  • HBR Technologies is one of the oldest computer resellers in the Dallas-Fort Worth Metroplex and has been serving the area for over 25 years
  • HBR provides a wide range of computer services and support to a broad client base
  • Provided a turn-key system, network, and/or security infrastructure to multiple clients in varying industries
  • Diagnosed and performed troubleshooting on LAN and WAN devices installed in diverse environments
  • Evaluated and recommended security and networking products
  • Ran vulnerability assessments using industry standard tools and provided security guidance for customers
  • Performed multiple virtualization projects
  • Performed multiple Exchange migrations
  • Provided a turn-key system, network, and/or security infrastructure, including WAN provisioning, firewalls, routers, switches, and systems for multiple customers ranging from private schools to private businesses leading a project team with the primary network vendors being Cisco and HP
  • Designed custom network solutions including multi-WAN firewall and routing, web and app server deployment, Network Load Balancing, and switching
  • Evaluated and recommended security and networking products including switches, routers, firewalls, vulnerability assessment and exploit tools, wireless LAN controllers and access points
  • Ran vulnerability assessments using industry standard tools such as nmap, Nessus, Metasploit, SAINT, and provided security guidance for customers, including policy design, helping them identify and mitigate or accept risks to their business
  • Performed multiple Active Directory implementations and migrations/upgrades from 2003 to 2008 architecture including migrating from a physical environment to a virtualized environment using VMware ESX 4 and ESXi5 primarily with a few customers requesting Hyper-V
  • Performed multiple Exchange migrations with versions ranging from 2003 to 2007, 2003 to 2010, and 2007 to 2010

Education

Information Technology - Major

Capella University
Minneapolis, Minnesota
01.2015

Computer Science - Major

Richland Community College
Richardson, Texas
01.1997

Automotive Repair - Certificate

Universal Technical Institute
Houston, Texas
01.1990

Skills

  • Cybersecurity Management
  • Security regulations compliance
  • Security Architecture Design
  • Comprehensive Risk Analysis
  • Security Testing Expertise
  • Business continuity planning
  • Cloud Solutions Implementation
  • Security Log Management

Certification

  • (ISC)2 Certified Information Systems Security Professional (CISSP), 2005
  • (ISC)2 Certified Cloud Security Professional (CCSP), 2016
  • Cisco Certified Network Professional (CCNP), 2010, 2014
  • Cisco Certified Design Associate (CCDA), 2009, 2014
  • Cisco Certified Network Administrator (CCNA), 2003, 2014
  • Microsoft Certified Information Technology Professional (MCITP): Enterprise Administrator, 2011
  • Microsoft Certified Information Technology Professional (MCITP): Server Administrator, 2010
  • Microsoft Certified Systems Engineer 2003 (MCSE), 2007
  • Microsoft Certified Systems Administrator 2003 (MCSA), 2006
  • CompTia Security+ General Security (Security+), 2004
  • CompTIA Network+ General Networking (Network+), 2004
  • CompTIA A+ Hardware and Operating System (A+), 2004
  • LeftHand Networks SAN/iQ, 2008
  • WatchGuard Certified System Professional, 2008

Professionalorganizations

  • (ISC)2, 2005
  • IEEE, 2012
  • ISACA, 2023

Timeline

Lead Information Security Engineer

McKesson
10.2021 - Current

Head of IT Security

DealerBuilt
12.2019 - 10.2021

Senior Lead Security Engineer

Dean Foods
11.2018 - 12.2019

Lead Network Security Engineer

JCPenney
02.2017 - 10.2018

Senior Cloud and Network Engineer

Cambium Learning
09.2015 - 02.2017

Director of Technical Services

Kofile Systems
01.2013 - 09.2015

Sr. Network/Security Engineer

HBR Technologies
09.2007 - 01.2013

Information Technology - Major

Capella University

Computer Science - Major

Richland Community College

Automotive Repair - Certificate

Universal Technical Institute

Similar Profiles

CREATE PROFILE
Robert McCutchan