Stephanie Sherwood's Location
Seattle, Washington, United States, United States
Stephanie Sherwood's Contact Details
Stephanie Sherwood work email
- Valid
- Valid
- Valid
- Valid
- Valid
- Valid
Stephanie Sherwood personal email
n/a
Stephanie Sherwood phone numbers
About Stephanie Sherwood
Seasoned information security professional with eighteen years in technology seeks opportunity with an innovative, agile, and progressive organization for which my cloud, consulting, offensive, and generalist security experience would enable transformative organizational change. Proven remote work history. 100% remote positions preferred, otherwise relocation a plus. International opportunities welcome.
Stephanie Sherwood's Current Company Details
Stephanie Sherwood Work Experience Details
-
Remote Support EngineerAttentus Technologies Sep 2023 - PresentDelivering white-glove technical support, administrative, and security services to a large customer base in a fast-paced MSP environment. Helped raise security awareness, create an internal blue team, and implement new or existing processes to better respond to security incidents. Improved standards and understanding of internal knowledge base structure, features, and processes improvement, borrowing heavily from ITIL knowledge management principles. Bulk of administrative work involves M365, server, endpoint, and email administration. Leveraging ConnectWise, Addigy, Kaseya, Immy.bot, and other MSP oriented software to deliver service.
-
Security ConsultantLeviathan Security Group Aug 2020 - May 2021Seattle, Washington, UsPerformed a variety of application security, and more broadly, software security assessments on traditional web applications, databases, cloud hosted applications, cloud platform services, and hardware based systems for a diverse clientele, including well known greater Seattle area based technology companies. Executed assessment planning, testing, documentation, remediation consulting, and deliverable creation during solo and team based assessments. -
Cloud Security ArchitectMidfirst Bank Feb 2020 - May 2020UsCollaborated closely with traditional enterprise security, DevSecOps, developers, and management teams on green field app development on the AWS platform to bring best practice and compliance aware security to both the platform and application. Educated on digital transformation, CI/CD, and DevSecOps to bridge regional in-house mid-sized enterprise thinking to modern cloud-enabled development, operations, security, and national application delivery thinking. -
Senior Information Security SpecialistIntegris Health Aug 2016 - Feb 2020Oklahoma City, Oklahoma, UsHeld multiple roles with the last role as an embedded full-stack security engineer within the Health Data Science & Clinical Informatics department. Delivered threat modeling, security architecture, cloud security, and Secure SDLC improvements. Provided enterprise/IT department security architecture and guidance for Microsoft 365, Azure, general cloud, and infrastructure. Performed attack simulations, application security assessments (DAST, SAST, IAST, manual code reviews), and penetration tests. Scoped and managed third party penetration tests. Created and managed findings. Created and communicated risk treatment, mitigation, and remediation strategies for audiences ranging from analysts to the CISO and his peers. Delivered purple teaming services in collaboration with blue team. Developed repeatable MITRE ATT&CK based scenarios, leveraging AWS and hybrid cloud infrastructure, Docker, bots, FOSS, automation, and integration with SIEM/SOAR platform. Designed, deployed, and operated phishing simulation and security education programs. -
Security ConsultantIndependent Contracting Dec 2015 - 2020Delivered varied information security services, largely penetration testing, for several clients.
-
Senior Security ConsultantTrue Digital Security May 2015 - Nov 2015Tulsa, Oklahoma, UsDeveloped new frameworks, processes, and communication strategy for internal red team and threat intelligence programs. Championed risk management practices and information security management system utilizing an ISO 27000/COBIT/NIST hybrid model and GRC platform. Performed local and cloud security reviews. Scoped and performed penetration and red teaming exercises. -
Esecurity Staff EngineerSeagate Technology Nov 2014 - Apr 2015Fremont, Ca, UsDeveloped new frameworks, processes, and communication strategy for internal red team and threat intelligence programs. Championed modern risk management practices and information security management system utilizing an ISO 27000/COBIT/NIST hybrid model and GRC platform. Performed local and cloud security reviews. Scoped and performed penetration and red teaming exercises. -
Senior Security ConsultantNet Source, Inc. Jun 2014 - Nov 2014Denver, Co, UsProvided pre and post–sales support to existing clients for various security appliances and software in a Sales Engineering role. Generated new sales leads and grew existing client relationships. Created and delivered presentations on a variety of security topics. Performed penetration testing and application assessment services. Developed and delivered custom security policies for multiple clients. -
Security ConsultantOptiv Inc Apr 2011 - Feb 2014Denver, Colorado, UsExecuted security services including internal and external vulnerability assessments, internal and external penetration tests, wireless vulnerability assessments and penetration tests, phishing attacks, phone based social engineering, in–person social engineering, physical security assessments, PCI related assessments, and full red team engagements. Created, reviewed, and delivered comprehensive reports for executives, technical resources, and everyone in between. Improved testing flexibility, reduced travel costs, reduced customer cost, and increased billable hours for security assessments by creating and maintaining a secure and standardized Linux penetration testing distribution and supporting infrastructure. -
Information Security EngineerIntegris Health Jun 2007 - Mar 2011Oklahoma City, Oklahoma, UsDeveloped and delivered presentations on security awareness topics for all audiences. Developed and taught a security professional training program. Developed policies, standards, procedures, metrics, and reporting for risk management, risk assessments, risk analysis, vulnerability assessments, vulnerability disclosure, application assessments, and host configuration assessments. Performed application security assessments, configuration assessments, vulnerability assessments, and risk assessments. Operational responsibilities included incident response lead, vulnerability management lead, and daily management of nCircle IP360, nCircle SIH, SourceFire, Palo Alto NGFW, and Microsoft PKI. Worked on DMZ and other network segmentation and security projects. Deployed and administered Cisco ASAs, Checkpoint FW, McAfee Enterprise, Microsoft PKI, Palo Alto, nCircle IP360, SourceFire, ArcSight, Imperva, LogLogic, Proofpoint, ActiveScout Edge, Packeteer, and other solutions.
-
Network TechnicianFirst American Professional Land Services Aug 2005 - Jun 2007Created and maintained policies. Created vulnerability management program. Performed password auditing, system hardening, awareness training, and executive education. Centralized logging. Maintained switches, routers, firewalls, servers, workstations, storage devices, remote users, load balancers, and everything else.
Stephanie Sherwood Skills
Penetration Testing
Vulnerability Assessment
Information Security
Cissp
Application Security
Vulnerability Management
Information Security Management
Vpn
Security
Firewalls
Vulnerability Scanning
Incident Response
Pki
Social Engineering
Risk Assessment
Web Application Security
Servers
Ips
Ids
Intrusion Detection
Security Audits
Computer Security
Security Architecture Design
Vulnerability
Nessus
Wireless Security
Security Awareness
Switches
Metasploit
Data Security
Security Policy
Sourcefire
Network Security
Troubleshooting
Linux
Windows Server
Information Technology
System Administration
Tcp/ip
Operating Systems
Unix
Risk Management
Windows
Internet Security
Training
Networking
Virtual Private Network
Stephanie Sherwood Education Details
-
University Of OklahomaComputer Engineering -
Norman High
Frequently Asked Questions about Stephanie Sherwood
What company does Stephanie Sherwood work for?
Stephanie Sherwood works for Attentus Technologies
What is Stephanie Sherwood's role at the current company?
Stephanie Sherwood's current role is Hire me! I'll move mountains!.
What is Stephanie Sherwood's email address?
Stephanie Sherwood's email address is ss****@****ity.com
What is Stephanie Sherwood's direct phone number?
Stephanie Sherwood's direct phone number is +140553*****
What schools did Stephanie Sherwood attend?
Stephanie Sherwood attended University Of Oklahoma, Norman High.
What skills is Stephanie Sherwood known for?
Stephanie Sherwood has skills like Penetration Testing, Vulnerability Assessment, Information Security, Cissp, Application Security, Vulnerability Management, Information Security Management, Vpn, Security, Firewalls, Vulnerability Scanning, Incident Response.
Free Chrome Extension
Find emails, phones & company data instantly
Find verified emails from LinkedIn profiles
Get direct phone numbers & mobile contacts
Access company data & employee information
Works directly on LinkedIn - no copy/paste needed
Aero Online
Your AI prospecting assistant
Select data to include:
Total price:
$0.00
0 records × $0.02 per record
Download 750 million emails and 100 million phone numbers
Access emails and phone numbers of over 750 million business users. Instantly download verified profiles using 20+ filters, including location, job title, company, function, and industry.
Start your free trial