Conor Sherman's Email Addresses & Phone Numbers

Support Desk Analyst @ Old Mutual Asset Management From January 2010 to September 2010 (9 months) Intern @ Matson&Isom Technology Consulting From June 2009 to August 2009 (3 months) Security Consultant @ McGladrey As an IT Consultant on the Engineering team, I had a client facing role where my main objectives were to lead in the scoping,...

Support Desk Analyst @ Old Mutual Asset Management From January 2010 to September 2010 (9 months) Intern @ Matson&Isom Technology Consulting From June 2009 to August 2009 (3 months) Security Consultant @ McGladrey As an IT Consultant on the Engineering team, I had a client facing role where my main objectives were to lead in the scoping, architecting, and implementation of technological solutions for clients. I was involved with a wide range of customized IT solutions due to the diversity of our client’s business needs. From October 2010 to December 2011 (1 year 3 months) Greater Boston AreaVarious @ Other Work History Can be provided upon request From June 2007 to August 2008 (1 year 3 months) Senior Security Engineer @ Motion Recruitment Partners During my tenure at Motion I worked closely with the CTO on security initiatives that enabled the business to grow in a technically secure and agile fashion. Key Accomplishment:* Translated high level contracts into actionable technical projects* Organized enterprise documentation around the security practice* Deployed a cloud managed AV solution to a geographically disperse organization* Performed the research and successful pilot of a vulnerability management toolset * Developed an OS and third party patching program From December 2011 to May 2012 (6 months) Boston MAPresident of Security Services @ Cyber Defense Group Helping the world's most innovative companies stay secure, Cyber Defense Group (CDG) builds effective security programs for cloud-native high growth companies. Conor is responsible for the development and management of national security consulting practice namely the Security Incident Response Team (SIRT), Cloud Security Engineering, and Security Governance Compliance functions. These security teams are the advisors, cloud architects, and analysts who provide reactive emergency response (IR) services or defend clients by building proactive scalable security programs.Key Accomplishments:* Rebuilt the engineering and consulting team increasing delivery by 160% through automation* Built and led the 24x7 Security Incident Response team that responds to breached and compromised companies* Sold 28% of the annual top-line revenue in my first 6 months resulting in the most profitable year (2019) to date* Designed, developed and deployed the security program for multiple multi-billion dollar organizations. VP of Cyber Security @ CLEAR (clearme.com) I built a security consulting firm that was acquired by CLEAR and became the core of the CLEAR security team. We built a NIST 800-53 compliant security program and received the FISMA High certification from the TSA.Key Accomplishments:* Built a tailor made security program to achieve NIST 800-53 controls resulting in FISMA High certification* Deployed a detection engineering and response program centered on a Security Automations (SOAR) platform with a Security-As-Code framework* Implemented a SIEM leveraging statistical analysis and machine learning techniques for advanced threat detection* Built a threat-intelligence program leveraging the Diamond model with access to and continuous monitoring of targeted threat actors on the dark webImplemented a Next-Gen EDR and developed an active Threat Hunting program centered on the MITRE ATT&CK framework. From March 2018 to June 2019 (1 year 4 months) Greater New York City AreaDirector of Cyber Security @ Apollo Global Management LLC I deployed the security detection and response program of one of the largest private equity companies in the United States. In this role, I was responsible for SIRT, SOC, Threat Intel, Insider Threat, and Security Engineering. I reported directly to the CISO and presented to the Executive Planning Committee.Key Accomplishments:* Rebuilt the Security Operations Center (SOC) for 24/7 coverage with an integrated threat actor hunting program* Deployed a cyber orchestration platform that reduced the cost and time of decision for the SOC* Led the building of the investigation and response program and the threat intelligence program* Built the security engineering team and lead the focus on security tool development and operations* Deployed the enterprise scale forensic and insider threat program From August 2015 to February 2018 (2 years 7 months) New YorkInformation Security Architect @ Old Mutual Asset Management My primary role was to translate cyber threats into business risk for our affiliates, internal business units, and C-Level management team. Additionally, I provided the technical expertise for the implementation, operation, and management of the security tools used by Old Mutual and provided consultative advice to the affiliates. Key Accomplishments:* Developed an incident response capability* Instituted C-Level reporting* Built a vulnerability management service* Architected and deployed endpoint security standards* Performed security gap assessments (e.g. SANS 20)* Led a team to assess and remediate security (IR) events* Re-architected the network security during a data center consolidation From May 2012 to April 2015 (3 years) Greater Boston Area