Summary
Overview
Work History
Education
Skills
Timeline
Generic

Kenny Dubuisson

Randolph,MA

Summary

Experienced technical professional with over a decade of expertise in IT, specializing in Computer Information Systems Security, System Administration, and Network Operations. Skilled in system security, vulnerability scanning, risk assessment, and cyber security analysis. Proven ability to coordinate projects and implement systems for government and commercial entities. Highly organized team player adept at efficiently managing project milestones and ensuring timely project delivery.

Overview

11
11
years of professional experience

Work History

Lead Security Stack Engineer - Active TS Clearance

DoD - Department of the U.S. Air Force
08.2019 - Current
  • Cybersecurity Engineer / Security Operations Specialist
  • Security Stack Management: Led the design, integration, and management of the organization's security application stack, leveraging CrowdStrike Falcon (EDR), Netskope (CASB/DLP), Jamf Pro & Jamf Protect (MDM), Duo (MFA), Google Workspace (SaaS Security), and Okta (IAM/SSO) to enhance security posture, enforce Zero Trust principles, and improve visibility across endpoints, cloud applications, and identity services
  • Cloud Access Security Broker (CASB) Implementation: Researched, deployed, and configured Netskope CASB, securing 1,000+ users by enabling real-time traffic monitoring, DLP enforcement, and API-driven security for SaaS applications, preventing data leaks of sensitive files and intellectual property
  • Leveraged Jamf MDM to automate the deployment of Netskope clients across the organization, ensuring seamless onboarding for new users while also enforcing automated client removal during offboarding- mitigating security risks by decommissioning access to corporate data upon user departure
  • Endpoint Detection & Response (EDR) Deployment: Implemented and optimized CrowdStrike Falcon EDR across 1,000+ users, enhancing endpoint visibility, automated threat detection, and rapid incident response across EC2 instances and macOS devices
  • Developed and maintained custom Indicators of Compromise (IOC) rules to proactively detect and mitigate threats, leveraging Falcon Intelligence feeds to enhance threat-hunting capabilities
  • Mobile Device & Endpoint Security Management: Managed and deployed Jamf Pro & Jamf Protect for 1,000+ macOS devices, creating security policies, automated compliance workflows, and configuration profiles to enforce endpoint security baselines and remediate security risks
  • SIEM & Threat Monitoring: Monitored and correlated security logs from AWS cloud infrastructure, security tools, identity platforms, and private applications in OpenSearch SIEM, enhancing threat detection and incident response capabilities
  • Cloud Security & Compliance: Secured AWS-based and hybrid production systems, ensuring compliance with NIST, CIS, and FedRAMP standards while optimizing IAM security, encryption, and network segmentation
  • Security Vulnerability Management: Worked closely with Red Team, Pen Testers, Engineering, and IT to identify, prioritize, and remediate vulnerabilities discovered during penetration tests, automated scans, and adversarial simulations, reducing attack surfaces across cloud and on-prem environments
  • Security Auditing & Risk Mitigation: Conducted security audits and risk assessments, providing actionable insights to strengthen incident response plans, security controls, and compliance adherence
  • Endpoint Security Compliance & Enforcement: Provided technical oversight for security compliance across 2,000+ endpoints, enforcing security policies via Netskope, CrowdStrike, Jamf, DLP, and SIEM solutions while working with system owners to remediate violations
  • Threat Intelligence & Incident Response: Investigated emerging threats and attack vectors targeting cloud infrastructure, SaaS applications, and enterprise networks, recommending and implementing proactive security measures
  • Security Architecture & Engineering: Implemented Zero Trust principles and security automation to defend against modern cyber threats
  • Developed automated policies to detect and trigger real-time remediation actions when threats were identified, ensuring rapid response to incidents with minimal manual intervention
  • IAM & Identity Federation: Designed and managed Okta as the enterprise Identity Provider (IdP), integrating SAML, OAuth, LDAP, and SCIM to enforce SSO, MFA, and Just-in-Time (JIT) provisioning across Google Workspace, AWS, and other SaaS applications
  • Secured IAM workflows for workforce and privileged users, ensuring least privilege access and strong authentication policies
  • Security Policy & Governance: Developed and enforced Google Workspace security policies, implementing email security, phishing protection, and access management controls to prevent unauthorized access and data leaks
  • API Security & SaaS Management: Secured API integrations across Google Workspace, Mattermost, Zoom, Jira, and other enterprise SaaS applications, ensuring secure data exchange, encryption, and role-based access controls to minimize attack surfaces and unauthorized API access
  • VDI & Secure Remote Access: Identified, secured, and deployed AWS Workspaces for remote work enablement, establishing endpoint security policies, network access control, and compliance monitoring for enterprise-wide adoption

Senior Technology Operations Center Technician

Experian
08.2022 - 04.2023
  • Acted as the primary point of contact for incident response and operational support, ensuring seamless functionality for both internal and external users
  • Monitored and maintained AWS cloud-based and on-premise production environments, proactively ensuring availability, performance, scalability, and security of mission-critical systems
  • Provided technical oversight for CI/CD pipeline operations across multiple environments, utilizing Travis CI, Jenkins, AWS CodeBuild, and AWS CodePipeline to facilitate efficient and secure software deployments
  • Partnered with Engineering and IT teams to implement comprehensive system monitoring and observability solutions, improving incident detection, resolution times, and system resilience
  • Developed and maintained runbook documentation and operational procedures, standardizing troubleshooting workflows and enhancing incident management effectiveness
  • Assisted Engineering teams with vulnerability management, supporting patch deployment strategies to mitigate security risks and maintain compliance with industry best practices and regulatory requirements
  • Provided strategic reporting and technical insights to management, ensuring leadership remained informed on system health, operational challenges, and ongoing infrastructure initiatives
  • Maintained deep expertise in enterprise monitoring tools, enabling proactive identification of performance bottlenecks and potential service disruptions, ensuring optimal IT application reliability and customer impact mitigation

Senior Implementation Consultant

Orion Health
01.2017 - 01.2019
  • Led the deployment and optimization of enterprise healthcare applications, collaborating with development, operations, and infrastructure teams to enhance system performance, reliability, and scalability
  • Designed and implemented cloud-based solutions as part of a new AWS environment build-out, actively working toward advanced AWS certifications to drive cloud adoption and best practices
  • Proactively analyzed system data and performance metrics to forecast capacity needs, optimize infrastructure utilization, and ensure a streamlined, high-availability environment
  • Conducted daily system monitoring to verify the integrity and availability of hardware, server resources, system processes, and application health, ensuring compliance with SLAs and operational benchmarks
  • Utilized ScienceLogic EM7 for infrastructure monitoring, gathering key performance metrics to identify potential system vulnerabilities and develop proactive remediation strategies
  • Planned, executed, and managed system upgrades and migrations, working directly with clients and cross-functional project teams to ensure seamless transitions with minimal downtime
  • Developed and automated operational workflows, leveraging Cron Jobs for scheduled maintenance and scripting solutions for remote OS upgrades via customized repositories
  • Managed critical infrastructure components, including load balancers, DNS servers, SSL certificates, and secure endpoints for enterprise applications
  • Created and maintained OS images for server deployments, standardizing configurations for efficient provisioning and system consistency across multiple client environments
  • Implemented and configured enterprise-grade encryption solutions, such as Thales/Vormetric, to secure sensitive data and meet compliance standards
  • Developed comprehensive runbooks and operational procedures, establishing a Network Operations Center (NOC) framework to enhance system monitoring and incident response capabilities
  • Served as Level 3 escalation support, resolving complex system issues beyond NOC capabilities and ensuring rapid troubleshooting and resolution of critical incidents
  • Orchestrated Active Directory user management, streamlining identity and access controls to improve security, authentication, and operational efficiency
  • Monitored and maintained on-premise infrastructure, utilizing Icinga and Bitvise for remote system access, diagnostics, and server management

Systems Operations Engineer

Orion Health
01.2016 - 01.2017
  • Diagnosed and resolved complex issues for managed services clients, supporting Orion Healthcare solutions such as Rhapsody, Portal, Health Information Exchange (HIE), and Webmail, ensuring secure and efficient system operations
  • Managed and maintained Rhapsody Interface Engines across SaaS and non-SaaS environments, ensuring optimal performance, security, and regulatory compliance in production and non-production systems
  • Administered and secured virtualized environments running Windows and Red Hat Enterprise Linux (RHEL 6.3 - 64-bit), implementing hardened configurations to mitigate security risks and ensure system stability
  • Utilized Microsoft SQL Developer to execute queries and generate reports for test and production environments, ensuring data integrity, security, and compliance with industry standards
  • Adhered to change management best practices, submitting JIRA-based requests and coordinating scheduled downtime with clients, ensuring controlled and secure system updates
  • Provided after-hours monitoring and incident response via an on-call rotation, serving as an escalation point for the NOC through PagerDuty and Splunk, ensuring continuous security and operational oversight
  • Conducted root cause analyses (RCA) for management review, identifying and mitigating security vulnerabilities while ensuring compliance with Service Level Agreements (SLAs)
  • Secured remote access to VMware environments in private cloud infrastructures, utilizing PuTTY, xShell, and WinSCP to enforce secure connectivity, access control, and operational integrity

Health Information Exchange Security Engineer

Orion Health
01.2014 - 01.2016
  • Participated as a security resource in calls relating to HIE participants' efforts to use the Hiway, ensuring all security protocols were met
  • Responsible for securely connecting participants to the MA Health Information Highway (MA HIWay), ensuring compliance with data protection regulations
  • Conducted security evaluations of each assigned participant's environment to identify and mitigate potential vulnerabilities
  • Discussed the participant's choice of secure connection options in the context of their actual ability to manage those connections, providing guidance on best security practices
  • Collaborated closely with the participant Service Manager to ensure timely, secure, and high-quality implementation experiences for participants
  • Performed secure installations and connections, ensuring all aspects of the solution met security specifications and participant's satisfaction
  • Assisted participants in testing and acceptance of the installed solution, focusing on validating security measures and protocols
  • Remotely assisted in the troubleshooting, diagnosis, and resolution of escalated technical support issues, prioritizing security concerns
  • Updated the knowledge base by creating and editing documentation on the internal company website, focusing on security procedures and protocols
  • Provided feedback to the Managed Services team to improve the security and effectiveness of the program overall

Education

Bachelor of Science - Computer And Information Systems

ITT Technical Institute
Norwood, MA
01.2009

Skills

  • Threat Intelligence & Incident Response
  • Identity & Access Management (IAM)
  • Data Loss Prevention (DLP) & CASB Implementation
  • Endpoint & Mobile Device Security
  • API Security & Governance
  • SIEM & Log Analysis
  • Cloud Security & Compliance
  • Zero Trust Security Architecture

Timeline

Senior Technology Operations Center Technician

Experian
08.2022 - 04.2023

Lead Security Stack Engineer - Active TS Clearance

DoD - Department of the U.S. Air Force
08.2019 - Current

Senior Implementation Consultant

Orion Health
01.2017 - 01.2019

Systems Operations Engineer

Orion Health
01.2016 - 01.2017

Health Information Exchange Security Engineer

Orion Health
01.2014 - 01.2016

Bachelor of Science - Computer And Information Systems

ITT Technical Institute

Similar Profiles

  • Tedd Chamberlin

    Tedd ChamberlinTedd Chamberlin

    WG-09 Lic. Journeyman Plumber at U.S Air Force Department of DefenseWG-09 Lic. Journeyman Plumber at U.S Air Force Department of Defense

    View Profile
  • Stephanie Jimenez

    Stephanie JimenezStephanie Jimenez

    Police Officer at Department of Defense (U.S Air Force)Police Officer at Department of Defense (U.S Air Force)

    View Profile
  • Macy Harris

    Macy HarrisMacy Harris

    Public Affairs Specialist at U.S. Department Of The Air ForcePublic Affairs Specialist at U.S. Department Of The Air Force

    View Profile
Kenny Dubuisson