Greg Mackey

Experience

• 

  University of Central Oklahoma

  Jul 2003 - now

  Key accomplishments:* Obtained CompTIA Advanced Security Practitioner (CASP+) certification in 2024.* Reviewed, tested, recommended and implemented a wide variety of security solutions, including Duo MFA, Tenable.io, Varonis, Microsoft Defender for Endpoint, Abnormal Security, and KnowBe4.* Responded and quickly resolved security incidents as senior technical lead for the university. Delegated technical tasks during incident response, with managers handling general communication and ensuring availability of resources. Identified areas of improvement after each incident and recommended changes to improve security posture and processes.* Defended UCO services during a multi-day DDoS attack. Worked with Radware to configure basic DDoS protection and restore services. Took ownership of the Radware Cloud solution as primary admin. Reworked the entire configuration for improved protection and reduction of false positives.* Implemented IP subnet blocklists within the Radware Cloud WAF to reduce exposure, starting with the known entities used for the DDoS attack. Wrote PowerShell script to automate the building of IP lists from RIR databases and advanced WHOIS queries, blocking entire cloud providers and enabling automatic updating of the lists.* Learned and used SecurityScorecard, Splunk, Cisco ISE, Cisco FirePower, and Infoblox IPAM to support security incidents and requests. Show less Managed about 150 Windows servers. Primary app admin for Active Directory, ADFS, Windows file services, DFS replication and namespaces, IIS, Nagios XI, and SSL certificate services. Assisted system and app admins with implementation of modern SSL ciphers, protocols, and other web server security changes. Wrote PowerShell scripts as needed to automate tasks. Participated in project meetings and helped to ensure secure implementations that followed best practices. Troubleshot system and application issues; worked with vendor support and assisted app admins with complex problems. Assisted with application review/approval, policy and standards development, audits and action items as a member of the IT Security Oversight Committee. Reviewed and submitted change proposals and attended Change Management Board meetings to discuss and vote. Coordinated semi-monthly maintenance meetings, scheduling and communication. Continually researched best practices and recommended and implemented changes to improve services and security. Stayed informed of current vulnerabilities and ensured that appropriate updates and mitigations were applied. Show less Key accomplishments:• Responded to security incident, halted malicious overnight activity within hours of initial compromise, and helped determine potential damage and assist with disclosure and mitigation.• Developed central file share structure and consolidated file servers, working with campus departments to migrate their data. Developed new standards and methods for implementing file share security. Implemented DFS replication and namespaces to ensure the continuous availability of file shares at all sites.• Automated Windows Server updating via WSUS and Group Policy, saving several employee hours per month and ensuring consistency.• Implemented primary/failover IIS web farms replicated offsite for public and intranet web content, ensuring continuous availability of primary web services during a disaster.• Researched and implemented best-practice changes to SSL ciphers and protocols, then worked with system and app admins to implement the same. Brought security ratings of UCO websites from D and F scores up to A and A+.• Implemented ADFS, Azure AD Sync, and wrote PowerShell script to automate license assignment as part of migration from on-premises Exchange to Office 365.• Implemented Nagios XI for server, app and web monitoring. Scripted and deployed new client and settings to all Windows servers. Developed and communicated standards. Wrote new wizard in PHP for Windows servers and migrated from the default obsolete, insecure NT protocol to the NRPE protocol.• Identified the need for an app or script to parse Active Directory security logs to identify sources of account lockouts. Reviewed options and determined there were no freely available solutions or scripts, with paid options costing tens of thousands of dollars or more annually. Wrote PowerShell script in 2 weeks to parse the logs, saving hundreds of hours and enabling OIT to troubleshoot lockouts for a given day rather than needing to know the exact minute the lockout occurred. Show less Key accomplishments:• Optimized personnel resources and call center logic to lower average help desk hold time during peak periods to less than 1 min and peak hold time to less than 3 mins (previously 5 mins and 15 mins). Improved call pickup during peak times to 90% (previously 50%) and doubled first call resolution metrics.• Managed campus-wide project for migration from NT domain to Active Directory. Built test servers and tested entire process before implementing changes. Scripted profile conversion process to minimize client impact since there was no Microsoft-supported method available.• Managed project for UCO’s first digital signage implementation, with a timeline of only 1 month from start to finish. Researched vendor solutions, viewed product demos, selected product and submitted requests for product, TV’s, TV mounts, TV mounting services, network and power drops, and security and cooling devices. Designed secure, ventilated enclosure for mounting devices below TV’s and worked with Facilities to build and paint enclosures and install locks and fans. Learned vendor application, designed layout in Photoshop and implemented content for 8 digital signage stations for the first-ever National Campus Security Summit.• Managed project for security system for AT&T Digital Forensics Lab in new Forensic Science Institute building. Met with stakeholders to identify needs. Met with prospective vendors and reviewed proposals. Selected vendor and worked with implementation team to ensure that all needs and expectations were met.• Led a large group of campus techs, holding monthly meetings and keeping them informed on projects and issues. Acted as liaison to all decentralized campus techs and established trust. Continually demonstrated the effectiveness of the central IT organization to improve what started as a poor reputation, convincing others to use central IT resources rather than manage their own. Show less Key accomplishments:• Automated Windows operating system install, including driver and application installs, saving countless hours on computer builds and enabling much faster implementation of new computers.• Implemented complex group policies in computer labs, modeled from the Windows Server 2003 security guide, to finally eliminate damage to lab systems from students.• Developed real-time inventory script in VBScript and scanned the network to collect inventory data for required annual reports and dynamically update master Excel spreadsheet. Eventually replaced this script with inventory data from SCCM. Show less

  • Information Security Engineer

    Jan 2020 - now

  • Systems Engineer III

    Mar 2017 - Dec 2019

  • Systems Engineer II

    Mar 2013 - Feb 2017

  • Technology Support Manager

    Jan 2006 - Feb 2013

  • Technology Support Specialist III

    Jul 2003 - Dec 2005