Kevin Mcpeak Email and Phone Number

Works collaboratively with the BD/Capture business group as a Technical Storyteller responsible for creating architectures and broad industry solutions that tie Palo Alto Networks Security Platform solutions directly to customers’ mission objectives. Provides robust Capture Management technical solutioning to translate, educate, and join with partners’ business and technical leadership teams to craft transformational architectural approaches, value propositions, thought leadership pieces, and proposal submissions for clients, channel, and FSI partners. Evangelizes Palo Alto Networks products across areas like SOC transformation, cloud transformation, secure remote work, modernization of network security, secure development practices, the implementation of zero trust architectures, and 5G approaches. Assists in the development of technical marketing content and represents Palo Alto Networks as a technical evangelist at industry meetings aligned to large programmatic captures.

Functioned as an internal and external SME for security issues relevant to Lenovo’s PC and Data Center business. Served as a key and highly-visible Lenovo Ambassador for security by meeting with potential and current customers to brief them on the success of Lenovo’s security strategy. Provided internal and external training and education regarding Lenovo's secure and transparent supply chain, security by design, and security integration features. As part of a broad, multi-discipline team, anticipated and proactively solved security program risks. Collaborated across organizational stakeholders to ensure alignment and integration necessary to successfully implement and maintain Lenovo's security strategy.

Developed high-value, long-term relationships with influential Public Sector customers and partners as their trusted advisor on cyber security and cloud strategy. Translated functional requirements into customized security solutions. Conducted business development activities in support of the sales process. Participated enthusiastically at technology industry events. Internally, recommended technical strategy and direction for best positioning Symantec’s product offerings. Educated peers and management on cyber security, technology trends, and best practices. Across diverse architectural platforms, served as a SME for reputation based malware filtering, endpoint management, endpoint security, data loss prevention, encryption, mobile device management, cloud infrastructure security, and new defensive technologies.

Provided in-depth technical support for Symantec Corporation’s Endpoint Management and Mobility (EMM) Security Business Practice. Gave end-user customers, channel and industry partners, and large enterprise administrators the means to effectively deploy scalable, secure and integrated Symantec solutions that enable mobile productivity throughout their respective enterprises. Designed targeted solutions using a range of Symantec products in order to gain technical acceptance from a wide range of customers. Conducted technical presentations and participated in customer engagements.

Designated as the ISSO for the Cyber Security Operations (CSO) of a federal agency:· Utilized security management tools to aggregate continuous monitoring data for mandatory FISMA reporting as required by the DHS CyberScope program. · Operated multiple security tools to conduct continuous monitoring of networks to produce reports of vulnerabilities, configurations, user activity and system events that impacted security and compliance.· Generated and maintained all C&A documentation specific to CSO and internal Automated CyberScope Reporting System (ACRS). · Conducted Security Testing and Evaluation (ST&E) activities in order to identify security weaknesses which represented risks to the security of the CSO and/or ACRS.· Based on the ST&E results, developed mitigation strategies in the form of Plan of Actions and Milestones (POA&M) for the CSO and ACRS.· Entered the POAM items into the Cyber Security Assessment and Management (CSAM) database which served as the agency’s authoritative FISMA data reporting and management tool.· Coordinated system audits, regularly tested information security controls, and responded to data calls from the agency's Information Technology Security Officer (ITSO).· Examined system changes to determine if re-certification and re-accreditation of the system was needed; instituted appropriate C&A action as a result of such examinations.· Assisted in the generation of additional policy documentation to improve cyber-situational awareness.· Provided recommendations to reduce risks and improve compliance.

As an Army Reservist, mobilized to Active Duty in support of Operation Iraqi Freedom // Operation New Dawn

Worked on-site at a US federal agency in support of SOC (Security Operations Center) operations:· Assisted with the configuration, testing, documentation, and maintenance of security appliances.· Monitored and evaluated the security of enterprise computer systems, developed and proposed means to decrease the vulnerability of systems. · Racked and configured tech refresh of new cutting edge security appliances in the Data Center. · Reviewed and maintained manual and automated audit trail records to ensure that all pertinent systems activities were properly recorded. · Conducted vulnerability testing, monitored security bulletins, and installed security agents on new systems.

O&M Team Lead• Operations & Maintenance Team Lead in support of a US federal agency's SOC (Security Operations Center) Engineering Team· Managed personnel that supported the day-to-day systems administration of this agency's SOC equipment to include SAN storage devices, Linux and Windows servers, large databases, SIEM monitoring stations and intrusion detection/prevention sensor grid devices. · Confirmed that ongoing systems administration, to include upgrades, anti-virus and patch management, archival tape back-ups, and the proper allocation of mass storage space occurred.· Served as the principle point of contact for all SOC O&M issues and insured that each of the engineers adhered to senior management approved project plans.· Evaluated vendor products and recommend ways to improve the current infrastructure, to include the SOC managed intrusion detection/prevention sensor grid, SIEM implementation, and overall security infrastructure.· Established plans for rollouts, implementations, and changes to the SOC infrastructure in the areas of SIEM upgrades, network consolidation, and the future maintenance of SOC equipment.· Worked with SOC management to plan and track progress on technical initiatives.· Ensured access to SOC managed devices were limited to properly authorized and trained privileged users.· Responded rapidly to federally mandated Contingency Plan testing, formal Incident Response reports, and vulnerability scan findings.· Assisted the SOC event monitoring staff with the configuration of their specialized SIEM workstations.· Validated and further developed Build Guides and detailed Standard Operating Procedures (SOPs).· Implemented formal Configuration Management across the SOC.

Worked as the Security Team Lead and Information Systems Security Officer for a US federal agency's network that had over 150 servers, 20,000 workstations, 20,000 BlackBerries and a wide range of other networked devices• Confirmed that the network was operated in accordance with the defense-in-depth security policies and practices outlined in the Systems Security Plan• Participated as a regular voting member on the Change Control Board• Served as the principal technical lead on all certification and accreditation issues• Blocked access to inappropriate and unauthorized web sites and protocols via a web proxy tool• Based on advisories from the agency's CERT, JTF-GNO, US-CERT's Technical Cyber Security Alerts, and open-source reporting of cyber threats, initiated rapid changes to enhance the network’s security posture• Initiated immediate protective or corrective measures when a security incident or vulnerability was discovered• Ensured that system recovery processes were monitored to ensure that security features and procedures were properly restored• Reported, cleaned up, and documented all data spills on the network• Utilized SIEM correlation and reporting technologies to track behavioral anomalies to quickly identify perimeter as well as possible insider threats.• Provided technical leadership during e-discovery investigations• Centrally managed enterprise-wide anti-virus and anti-spyware updates • Made certain that the configuration management for security relevant software, hardware and firmware remained under documented revision control• Ensured that all users had the requisite security clearances, authorizations and need-to-know and were aware of their security responsibilities before being granted access to the network• During audits, provided all security related documentation to properly authorized individuals• Ensured that system security requirements were addressed during all phases of the system life cycle

Worked at a US federal agency in support of their Information Resource Management Division:• Managed and supervised 16 systems engineers that traveled to over 50 overseas USG facilities in order to facilitate a secure network integration. • Migrated data, e-mail, custom and COTS applications, servers, workstations and peripheral devices.• Conducted network performance baseline testing.• Installed and configured encryption devices.• Ensured all workstations and servers met the mandatory security configuration guidelines. • Conducted a detailed quality assurance review with each site following their network migration.• Provided follow on technical support to USG facilities after the completion of the network integration efforts.

As an Army Reservist, mobilized to Active Duty in support of Operation Enduring Freedom

Class Lab Engineer:• As the sole on-site systems engineer, administered multiple complex Windows NT and AIX based LANs.• Troubleshot and replaced defective PC and RS/6000 hardware components. • Responsible for all software, hardware, and network issues for the facility’s Token Ring based LAN. • Configured and tested network settings for both TCP/IP and SNA connections• Managed detailed hardware inventory and site Y2K analysis reports. • Performed mass hardware and BIOS upgrades as scheduled. • Configured operating system, network, and application settings for numerous course images. • Set up various platforms, including Win95, WinNT, OS/2, AIX, and Linux. • Performed post customization and verification of classroom images on a weekly basis. • Managed a successful migration of the IBM facility to a secure Virtual Private Network.• Worked closely with course instructors to guarantee consistently high scores for this large technical training site.

Set-up and administered an intra-company on-line National Accounts Discussion Board. Assessed, promoted, and trained personnel in the use of this technology. Served as a liaison between corporate headquarters and field offices, clients, journals and associations. Editor of a quarterly newsletter, which focused on the company’s National Accounts strategy.

Maintained financial reports detailing labor, project-related and overhead costs. Prepared and analyzed monthly invoices for government assignments and updated budgetary percent-complete files and spreadsheets. Worked closely with corporate finance to ensure various direct and indirect costs were applied accurately and that auditable records were prepared. Assisted in preparation of individual rate adjustments for closed government contracts. Reported directly to the Project Manager, but worked independently and had responsibility for select projects. Selected software and hardware for his team’s utilization and for providing training on the software once it was deployed.