Kevin McCarthy

BS Cybersecurity, RIT // Networking & Cloud Security

Fourth-year cybersecurity student building hands-on experience in networking, cloud security, governance risk & compliance, and incident response.

Seeking full time employment starting January 2027.

Kevin McCarthy

credentials

Clearance & Certifications

Actively cleared and pursuing industry certifications to complement hands-on technical experience in cybersecurity and networking.

SECURITY CLEARANCE

Secret (Active) - Granted March 2026.

CERTIFICATIONS

CompTIA Security+ (in progress) - Anticipated August 2026.

experience

Professional Experience

Cyber Systems Engineer Intern

Jun 2026 – Present

Lockheed Martin

  • Integrated NIST 800-53 security controls into system designs, authoring SSPs and POA&Ms to obtain ATO.
  • Led efforts assuring end-to-end RMF process lifecycle to sustain DoD compliance.
  • Conducted STIG compliance scans, documented and remediated findings, and automated evidence collection to accelerate ATO approvals.
  • Collaborated and developed strategies with key stakeholders.

Home Improvement Contractor

Oct 2021 – Aug 2025

Seasonal Freelance Worker

  • Applied carpentry, drywall, painting, flooring, tiling, and landscaping skills to renovation projects for customer-owned rental properties.
  • Volunteered 200+ hours on community home restoration projects, collaborating with diverse teams to enhance living spaces for those in need.

activities

Extracurricular Activities

RITSEC

RIT Security Club

Active member of RIT's largest academic club, built around the motto "Security Through Community," contributing to student-led education, research, interest groups, mentorship programs, and competitions like IRSeC, ISTS, and the RITSEC CTF, which draw talent from across the country.

COMPETITIONS

Cyber Competitions

Secured 1st-place finishes at University at Buffalo Lockdown and CORA II, demonstrating strong incident response and penetration testing skills under competitive pressure. Also contributed to building RIT's own competitions, helping develop logging infrastructure and design King of the Hill (KoTH) style challenges.

FLJ AWARD

Freddie L. Jackson Citizenship Award

Founded and personally manage this award, overseeing the website, eligibility criteria, and evaluation process for applicants. To date, have awarded over $3,000 to underrepresented students at West Haven High School in Connecticut to support their pursuit of higher education.

projects

Prominent Projects

PROJECT-02Authentication

Risk-Based Authentication Literature Review

Co-authored a systematic literature review synthesizing 35 sources (2012–2025) on Risk-Based Authentication (RBA), covering machine-learning risk scoring (Random Forests, feed-forward neural networks, deep reinforcement learning), real-world deployment gaps, and the security-usability-privacy trade-offs shaping adoption. Findings included evidence that only 42.31% of audited websites supported MFA and 22.12% blocked obvious account hijacking attempts, underscoring the gap between RBA's technical maturity and its practical deployment.

PROJECT-03Network & Cloud Security

Segmented Enterprise Network

Architected and deployed a segmented, two-VLAN enterprise network on Proxmox, integrating Windows Server 2022 (AD, DNS, DHCP) with RHEL 10 systems for web, database, and file/print services. Hardened all hosts against CIS Benchmarks, mapped Group Policy Objects to NIST CSF controls, and configured Wazuh for centralized log aggregation and threat detection across the environment.

PROJECT-04Governance, Risk, & Compliance

Healthcare DR/BCP Technology Assessment

Co-authored a technology risk assessment for a simulated regional healthcare network, evaluating how Identity, AI, Quantum Computing, and Cloud adoption affect disaster recovery and business continuity. Led the Cloud Computing analysis, covering geo-redundant backups, HIPAA-compliant storage, and multi-cloud failover strategy for EHR and telehealth systems, and contributed to the AI section, focused on third-party model risk, PHI data isolation, and failover planning for automated clinical workflows.

PROJECT-05Offensive Security

Vulnerable Windows Test Environment

Built and deployed an intentionally vulnerable Windows target, 'database,' incorporating RCE and weak authentication flaws modeled on common real-world misconfigurations. Confirmed exploitation paths through Nmap-based reconnaissance and Metasploit-driven exploitation, incorporating privilege escalation techniques throughout.

PROJECT-06Infrastructure

Virtual Domain & Network Infrastructure

Built and administered a Windows Server infrastructure featuring Active Directory, DHCP, DNS, and a pfSense gateway. Managed user accounts, OUs, and GPOs across Linux and Windows clients, ran remote Git repositories on a Linux server, and set up secure file transfer via vsftpd. Compared file-sharing protocols including rsync, FTP, Samba, and NFS, then deployed an SSL/TLS-secured Apache web server to enable safe login access.

skills

Skills & Expertise

Operating Systems
Windows Windows Server Linux pfSense
Infrastructure & Networking
Azure Proxmox VE KVM Active Directory DNS / DHCP Group Policy VLAN Segmentation Apache SSL/TLS
Security Tools
Wazuh Nmap Metasploit Wireshark Git/GitHub
Frameworks & Standards
NIST 800-53 / RMF STIGs CIS Benchmarks NIST CSF
Languages & Scripting
Python PowerShell Bash

contact

Seeking full time employment starting January 2027.