newell.sh

Tyler Newell

Senior security consultant. I help teams manage exposure by finding vulnerabilities, prioritizing fixes, and making sure patches get applied.

SasquatchSecurity, Waterville, Ohio

About

I have worked with computers since the 1990s. I joined the U.S. Air Force in the late 2000s and worked my way through information technology support and system administration before moving into cybersecurity.

Most of my work now is exposure management. I look at what is exposed, what is vulnerable, and whether patches and fixes actually took. The scanning, vulnerability management, and patching should work as one process, not three separate piles of tickets. I have done this in military, federal, health care, and higher education settings.

I keep learning through hands-on work and write things down so other people can use them. That is the idea behind SasquatchSecurity.

Focus

Exposure management is most of what I do. It ties vulnerability management and patching together, from the first scan to checking that the fix worked.

  • Exposure management from discovery through validation
  • Vulnerability management with Tenable, Rapid7, Qualys, and similar tools
  • Patch management and confirming fixes stick
  • Penetration testing and adversary simulation
  • Incident response, threat hunting, and security monitoring
  • Network and infrastructure security assessments

Background

I started in communications and infrastructure, then moved into security. Different titles over the years, but the work has been the same: find problems and help teams fix them.

  • Senior Security Consultant, Exposure Management Current role, 2020s
  • Information Security Manager Led incident response, security operations, vulnerability management, and application security teams, early 2020s
  • Information Security Analyst III Security operations center, security monitoring, endpoint detection and response, threat hunting, early 2020s
  • Senior Information Security Analyst Digital forensics lead, campus security architecture, late 2010s to early 2020s
  • Information Systems Security Officer Risk Management Framework, accreditation, classified systems, 2010s
  • Technology Support Specialist Enterprise desktop and classroom systems, 2010s
  • U.S. Air Force, Client Systems Technician Communications focal point, 1,300+ clients, late 2000s to 2010s

Credentials

CompTIA

  • SecurityX formerly CompTIA Advanced Security Practitioner
  • Penetration Testing
  • Cybersecurity Analyst
  • Security
  • A Plus

Tenable

  • Partner Sales Engineer, Vulnerability Management
  • Partner Sales Engineer, Operational Technology Security
  • Certified Managed Security Service Provider Practitioner

Rapid7

Rapid7 Technical Sales Professional program

  • Partner Service, Vulnerability Management
  • Foundation
  • InsightIDR Product Certification
  • InsightVM Advanced Certification
  • Surface Command Certification

Education

  • Master of Science, Cybersecurity and Information Assurance Western Governors University, 2020s
  • Bachelor of Arts, Learning Design and Technology Bowling Green State University, 2010s
  • Associate of Applied Science, Computer Information Systems Community College of the Air Force, 2010s

Recognition

  • Toledo Threat Defense Challenge, 1st place
  • U.S. Air Force Achievement Medal

Contact

Open to full-time work, contract jobs, or a quick chat. Send me a LinkedIn message.