Kyle LePrevost

Senior Security Architect @ GE Digital

Location: Richmond, Virginia Function: Information Security / Office of CISO

At a Glance

  • Current Job: Senior Security Architect @ GE
  • Education: BS. Information Systems, Clemson
  • Expertise: Cloud Security Architecture
  • Languages: Python, Ruby, Bash

About Me

Information technology is more than a job for me; it is also my greatest passion in life. Over the last five years I have acquired a wide body of expertise perfecting security architecture in one of the largest and most chaotic technology environments on the planet - and I have loved every second of it. I always have a technology related hobby project that keep my skills on the cutting edge - from contributing to open source, to responsibly disclosing security vulnerabilities, to building virtual reality games - feel free to check out the projects (or my blog!) section below for more information.

I've been enamored with understanding how technology works for the better part of two decades. I started a small time web development / web hosting business when I was in middle school (my clients would have been mortified if they knew my age), went on to become the youngest Microsoft Certified IT Professional: Enterprise Architect in my state (at 17), got a Cisco Certified Network Professional (CCNP) certification for fun, then started two profitable technology companies ($250k VC + $100k revenue combined) in college, and finally took a job as a Security Architect at GE after graduation.

My career at GE has been (and still is!) one of the most rewarding times of my life. Not only have I felt driven to a cause - defending our critical industrial infrastructure against cyber attack - but I have also had the opportunity to work on a plethora of different technologies. Some highlights include: creating the current security architecture of GE Public Cloud, creating tons of related cloud application architectures for our internal security services (Qualys, WebInspect, Veracode, IDS), architecting a zero-trust network model for remote sites, creating the architecture for an industrial IoT MSSP, architecting a global Cisco ISE NAC solution, and running our internal rapid prototyping lab for the cybersecurity organization. In that time I've been promoted from a Enterprise Security Architect to Senior Enterprise Security Architect and have taken two executive training classes through GE Crotonville.

I can't talk about myself without also talking about my personal projects - they are the mechanism by which I keep my skills sharp while also experimenting with new technologies. I have a whole section dedicated to these projects (see the left navigation or scroll down), but I'll give a brief overview of the recent ones. I built and open sourced a python-based algorithmic LendingClub trading bot, built a useful AWS Lambda script that notifies you of hard-to-get dinner reservations, and a Predix Industrial Internet app that alerts you to rare Pokemon nearby in Pokemon Go.

View More

Experience

From Jan 2016 To Present

~2 Years and Counting

GE Digital Richmond, Virginia

Senior Cyber Security Architect

Created the GE AWS Public Cloud security architecture – including design patterns around EC2, VPC, RDS, EBS, S3, API, and CLI. Advised on the strategic technology roadmaps for Enterprise Vulnerability Management, Application Security, and Endpoint Security. Architected a large scale RESTful cloud security compliance solution that is built on AWS Lambda, Redshift, Glue, CloudFormation and Jenkins. Assisted with moving the Security Architecture team to an Agile Kanban method of working.

From Aug 2013 To Jan 2016

(2 Years 5 Months)

GE Corporate Richmond, Virginia

Cyber Security Architect

Architected and helped implement a global Network Access Control (NAC) deployment for a 400k user network. Architected a one million device commercial Industrial security logging solution based Amazon Web Services (AWS), Amazon IoT, and GE’s Predix industrial platform. Created a Security Innovations Lab built on VMWare and inspired by DevOps practices. Operating the lab exposed me to Unix / Linux / Windows server scripting and automation. Authored five ISO-aligned security focused IT Policy documents. Developed a SaaS discovery and analytics program leveraging Splunk and Zscaler as data sources.

From Aug 2010 To Aug 2012

(2 Years)

Clemson University IT Clemson, SC

Network Engineer

This was a part time position (20hrs/week) during college to supplement course work in my major. Started out running and terminating network cables for a year, then worked my way into L2 Switching.

Education

Clemson University

BS. Management Information Systems / Entrepreneurship

GPA: 3.95, Department of Management Merit Award

2010-2013

Amazon Web Services

AWS Certified Solutions Architect

Certification

2015-2017

Cisco

CCNP: Route & Switch

2011-2017

Microsoft

Microsoft Certified Solutions Expert (MCSE)

2008-2017

Skills & Languages

Architecture
Cloud Security
Agile
DevOps
Vuln Mgt
AppSec
Endpoint Sec
Splunk

Coding Languages

  • Python: Intermediate
  • Scripting: Intermediate
  • Ruby: Beginner

Personal Projects

VCSP 2017 - Cloud Defense in Depth

I gave a presentation about a new Defense in Depth model for public cloud environments to the Virginia Cyber Security Partnership. Full video and materials on my blog (or click the title above!).

PokePredix: The Industrial Internet of Pokemon

My team and I built a Pokemon Go heatmap on the Predix Industrial Internet platform during GE's annual customer conference in 2016. This project came in third place in the Predix Transform 2016 hackathon event.