Kevin Nguyen
About Kevin Nguyen
Kevin Nguyen is a Cybersecurity Program Manager with extensive experience in security incident analysis, compliance management, and vendor risk assessment. He has worked for various organizations, including Zyston LLC and CorVel Corporation, and holds a Bachelor's Degree in Computer and Information Systems from Texas State University.
Current Role at Zyston
Kevin Nguyen serves as a Cybersecurity Program Manager at Zyston LLC, a position he has held since 2022. In this role, he focuses on enhancing cybersecurity measures for clients by conducting Root Cause Analysis for security incidents. He identifies gaps in tooling, logging, and processes to improve overall security posture. Additionally, he manages SOC2 compliance and leads various Governance, Risk, and Compliance (GRC) initiatives, including StateRAMP, PCI-DSS, and HiTrust.
Previous Experience
Prior to his current position, Kevin worked at CorVel Corporation as a Security Engineer from 2021 to 2022. In this role, he assessed third-party vendors' security postures to help clients understand their overall risk. He also has experience as a Security Analyst at H-E-B from 2018 to 2020 and served in the United States Army as an Information Systems Analyst/Operator from 2011 to 2017. His diverse background in cybersecurity roles has equipped him with a comprehensive understanding of security management.
Education and Qualifications
Kevin Nguyen earned a Bachelor’s Degree in Computer and Information Systems from Texas State University, where he studied from 2010 to 2018. His educational background provided him with a solid foundation in information technology and cybersecurity principles. During his time at Texas State University, he also worked as a Systems Group Intern from 2014 to 2018, gaining practical experience in the field.
Cybersecurity Initiatives and Projects
In his professional capacity, Kevin has led tabletop exercises for clients' infrastructure and engineering teams, focusing on identifying gaps in Disaster Recovery and Business Continuity Plans. He has designed and maintained Sumo Logic SOAR for clients' Security Operations Centers (SOC), emphasizing automation opportunities. Additionally, he has developed custom queries within SumoLogic CIP and CSE SIEM to meet clients' specific use cases and matured vulnerability management programs using various tools.
Technical Skills and Tools
Kevin Nguyen possesses expertise in various cybersecurity tools and methodologies. He has experience with AWS Inspector, Security Hub, DataDog APM, Vanta, and Jira for developing and maturing vulnerability management programs. His skills also include researching tooling replacements to maintain capabilities while adhering to clients' budgetary constraints. Kevin's technical proficiency supports his efforts in enhancing security frameworks and compliance initiatives.