Summary
Overview
Work History
Education
Skills
Volunteer Experience
Military Service
Certification
Timeline
Generic

COLLIN SHULTS, CISSP

Arlington,United States

Summary

Accomplished cybersecurity leader with a strong background in enterprise risk management and cybersecurity frameworks. History of strengthening cybersecurity defenses and executing changes to resolve identified weaknesses. Expertise in developing stakeholder partnerships and leading diverse teams to produce impactful results in multifaceted environments.

Overview

8
8
years of professional experience
1
1
Certification

Work History

Manager

DELOITTE
Rosslyn, VA
06.2023 - Current
  • Manage 15 security professionals on a $10M contract, overseeing critical DOL information systems.
  • Led a program that increased compliance scores from 65% to over 85% across all systems.
  • Develop and grow relationships across DOL leadership, stakeholders, and security offices.
  • Identified enterprise improvements, including AI integration and implementation of first JIRA instance.
  • Advised federal leadership on risk mitigation strategies aligned with organizational goals.
  • Updated security policies, analyzing impacts to the current process, and strategizing effective transitions.
  • Standardized security documentation across agencies to enhance regulatory compliance.
  • Conducted gap analysis of cybersecurity processes, integrating AI for efficiency improvements.
  • Created custom monitoring tool for resource allocation, improving workload forecasting accuracy.

Senior Consultant

DELOITTE
Rosslyn, VA
06.2021 - 06.2023
  • Performed Information System Security Officer (ISSO) duties for multiple, diverse DOL information systems, both cloud-based and on-premise, achieving a 90% compliance rate by addressing system complexities effectively.
  • Collaborated with DOL system stakeholders to develop, refine, and maintain critical system documentation, ensuring accurate representation of operational statuses, and regulatory compliance.
  • Enhanced security assessment scores significantly, raising them from 50% to over an 85% passing rate through strategic oversight and targeted security improvements within assigned systems.
  • Led a strategic initiative to restructure legacy DOL systems, reducing risk by clarifying application roles and enhancing security oversight, which improved operational transparency and documentation clarity.
  • Provided mentorship to junior team members, enhancing their cybersecurity knowledge, and fostering team cohesion, which contributed to strengthening the overall cybersecurity framework at DOL.
  • Engaged directly with high-level DOL stakeholders to provide education on federal and specific DOL cybersecurity requirements, effectively enhancing teamwork, communication, and the agency’s cybersecurity posture.

Senior Consultant - ISSO

GRITTER FRANCONA, INC. – United States Secret Service
Washington, DC
07.2019 - 06.2021
  • Performed comprehensive ISSO duties for various United States Secret Service (USSS) information systems, encompassing both cloud-based and on-premise environments, to uphold rigorous security standards
  • Led the Risk Management Framework (RMF) process for high-value assets, crucial in sustaining the overarching security of the organization
  • Maintained detailed inventory management for over 2,800 assets, ensuring accurate tracking and accountability across multiple systems
  • Consistently achieved favorable outcomes in monthly report cards reported to the Department of Homeland Security (DHS), actively collaborating with system owners to enhance the agency’s cybersecurity posture
  • Contributed to standardizing enterprise-level control descriptions, facilitating consistent control ownership and distribution across agency systems
  • Collaborated with system owners, administrators, and operators to address and remediate vulnerabilities identified in DHS alerts and monthly reports
  • Supported the Continuous Diagnostic Monitoring (CDM) efforts, providing comprehensive reports on vulnerabilities, asset accountability, FISMA boundary definitions, and antivirus measures to all ISSOs
  • Participated in working groups to guide the adoption of new technology platforms and services, offering cybersecurity risk and governance advice to bolster organizational security
  • Developed and refined a Business Impact Analysis tool to better track recovery times and impacts for specific applications, services, or functions within FISMA boundaries; this tool was adopted agency-wide
  • Actively engaged in the Change Control Board’s weekly meetings, discussing and strategizing system updates, including patching, firmware upgrades, and new technology integrations to optimize system functionality

Cybersecurity Policy Analyst

GENERAL DYNAMICS INFORMATION TECHNOLOGY (GDIT) – Department of State
Rosslyn, VA
12.2018 - 07.2019
  • Evaluated and processed all agency-wide exception requests for cybersecurity policies, requiring in-depth knowledge of agency and industry recommendations and directives to support the approval process
  • Conducted extensive investigations for agency network extension requests involving historical analysis and data collection and led collaborative efforts between various inter-agency offices to ensure adherence to cybersecurity practices
  • Maintained and updated comprehensive knowledge of Department of State cybersecurity policies, regularly reviewing and researching to stay informed of industry standards
  • Prepared and delivered detailed analysis and impact reports to executive-level leaders, informing them of current policy standings and potential areas for improvement
  • Assisted in evaluating emerging technologies and preparing detailed impact reports to support executive decision-making on cybersecurity enhancements
  • Volunteered to lead the implementation of ServiceNow, overseeing the transition of data and process integration to enhance operational efficiency
  • Designed new procedures and created a release schedule for extensions and exceptions, improving the management of workflows and implementing automated processes through ServiceNow
  • Served as the lead Policy Analyst and primary point of contact for developing and implementing new formats and procedures for network extensions, including creating and validating Standard Operating Procedures (SOPs)
  • Led daily stand-up meetings without the Policy Manager to address team challenges and assist with operational needs, ensuring project continuity and alignment

Associate – Federal Cyber

KPMG
Tysons Corner, VA
09.2017 - 12.2018
  • Conducted ISSO support for RMF validation processes on multiple military systems, effectively managing stringent timelines and ensuring compliance
  • Collaborated with government ISSOs, ISSMs, and SAs to evaluate system maturity within the RMF framework, standardizing documentation using I-Assure Templates and conducting thorough system assessments
  • Spearheaded the integration of new technologies to address FISMA compliance issues identified in Inspector General (IG) audits, coordinating with multiple stakeholders across different departments
  • Implemented new business processes to streamline employee onboarding and offboarding procedures, alleviating operational bottlenecks and enhancing workflow efficiency
  • Engaged with director-level staff to drive the development and implementation of new operational practices and technological tools, enhancing agency capabilities
  • Led a comprehensive roadmap analysis to upgrade outdated technology infrastructure and business practices to improve voucher and payment processing systems for a government client
  • Conducted in-depth analyses of existing technology and business processes to identify and address functional pain points across various agency departments

Education

Master of Science - Cybersecurity Management and Policy

University of Maryland University College
05.2019

Skills

  • Project Management
  • Enterprise Risk Management and Mitigation
  • Cloud Security Strategies
  • Cybersecurity frameworks (NIST 800-53, CSP, ISO 27001)
  • Enterprise Policy Development
  • Vulnerability Management
  • AI Integration and Governance
  • Cross-Functional Team Development
  • Stakeholder Relationship Development

Volunteer Experience

  • Dog Handler, Lucky Dogs Animal Rescue, Arlington, VA, 2024 - Present
  • Senior Firefighter/Lieutenant, Marshall Volunteer Fire Department, Marshall, VA, 2004 - 2016

Military Service

Army National Guard, 09/01/10, 02/01/15, 88M Transportation Specialist, Morgantown/Fairmont, WV, 02/01/09 - 02/01/15

Vehicle Operator / Infantry, Operation New Dawn, Kuwait, 09/01/10 - 08/01/11

Certification

  • CISSP
  • Top-Secret Security Clearance

Timeline

Manager

DELOITTE
06.2023 - Current

Senior Consultant

DELOITTE
06.2021 - 06.2023

Senior Consultant - ISSO

GRITTER FRANCONA, INC. – United States Secret Service
07.2019 - 06.2021

Cybersecurity Policy Analyst

GENERAL DYNAMICS INFORMATION TECHNOLOGY (GDIT) – Department of State
12.2018 - 07.2019

Associate – Federal Cyber

KPMG
09.2017 - 12.2018

Master of Science - Cybersecurity Management and Policy

University of Maryland University College

Similar Profiles

CREATE PROFILE