Derrick Sherod
Blue Springs,MO
Summary
Experienced Technical Program Manager with expertise in cyber security, excelling in exception management, vulnerability management, and risk management. Proven track record across diverse industries including higher education, medtech, and public cloud. A strategic leader adept at navigating complex technical landscapes to ensure robust security frameworks and successful program delivery. Dedicated to long-term risk management by building strong internal protocols and instilling culture of responsibility, accountability, and attentiveness.
Overview
18
18
years of professional experience
1
1
Certification
Work History
Security Technical Program Manager II
AWS Marketplace
01.2023 - Current
- Reduced technical debt through proactive identification and resolution of system bottlenecks and architectural issues
- Spearheaded the adoption of launched services that improved user experience
- Championed process improvements, introducing streamlined workflows that increased productivity across teams
- Collaborated closely with development, business development and project management teams to launch new service offerings
Security Program Manager II
AWS Marketplace
06.2022 - 01.2023
- Improved program efficiency by streamlining processes and implementing time-saving solutions
- Managed cross-functional teams for successful project completion within deadlines and budgets
- Developed strategic plans, setting clear objectives and achievable milestones for the team
- Implemented risk management strategies to mitigate potential barriers to project success
- Trained, coached, and mentored a team of 7 Security SMEs responsible for Security program deliverables
Support Engineer I /II(Security SME)
AWS Marketplace
08.2020 - 06.2022
- Deep dive into technical details, diagnose and reproduce issues with Amazon technology products, guide customers, and share best practices
- Improve customer experience by delivering superior support, exceeding SLA expectations
- Build and strengthen collaborative relationships with service providers, engineering teams, and support staff
- Create, maintain, adhere to, and communicate documented operational standards
- Facilitate onboarding support and role training for new Support Engineers
- Engage in discovering seller requirements recommending alternative technical approaches where necessary
- Query, organize, and format raw data to create actionable insights
- Partner with product and program managers to support new product feature launches, new projects, and events
- Serve as a SME for security working with service providers and engineering teams to drive notification and remediation of security issues.
Cybersecurity Risk Administrative Associate (GRC)
University of Illinois
08.2019 - Current
- Evaluate processes, projects, and purchases for risk and compliance issues
- Participate in risk management operations
- Perform third party risk assessments on third-party cloud vendors
- Process policy exception requests and evaluate them for risks
- Work with different groups and other IT professionals to provide consultation and education on university and legal requirements with various classifications of data
- Work with faculty and researchers on data protection plans for grant proposals
- Perform review of vendor provided SOC2 reports
- Stay current with various laws and regulations affecting privacy.
System Security Engineer -Federal (Department of Defense and Veteran Affairs)
Cerner Corp.
02.2019 - 05.2019
- Perform self-assessments on current assets to ensure they meet DoD and VA security guidelines
- Identify and document security control deficiencies and provide clear and concise recommendations to internal stakeholders regarding the elimination or mitigation of control deficiencies
- Perform independent verification of the closure of the above deficiencies
- Work with government auditors to reconcile any differences between current security posture and current system design
- Work with third party vendors to resolve any disparities between current security posture and current software design
- Stay up to date with project in order to accurately provide status reports when requested by auditors
- Work within the confines of HIPAA and other data privacy regulations.
System Engineer (Windows)
Cerner Corp.
05.2017 - 02.2019
- Provide system implementation, support, monitoring and maintenance of Cerner's solutions and services
- Perform daily system operations tasks to verify system integrity and availability, ongoing performance tuning, hardware/OS upgrades, and resource optimization
- Implement monitoring for applications and servers, and respond to alarms in a timely manner, preventing client impact and performance degradation
- Deploy physical and virtual servers, complete assigned incident management asks, deploy, setup and maintain testing environments
- Provide Tier III support per service requests, resolving issues within constraints of SLA
- Manage application security in multi-tenant environments
- Create and maintain documentation for system changes and upgrades.
Business System Analyst
Horizon Hobby
10.2016 - 05.2017
- Provide systems support to business units, answer functional questions, troubleshoot problems and work with IT as necessary to resolve more complex issues
- Work with business units to gather requirements for system enhancements and then work with IT to develop and implement these changes
- Support business units by developing reporting and analysis tools utilizing data across multiple systems and platforms
- Provide consistent input to improve and streamline processes across the business.
Server/Trainer
Olive Garden
06.2006 - 05.2017
- Acted as a leader of a team of 75 servers serving over 4,000 weekly guests
- Developed a high-quality team that lead the entire company in guest satisfaction for one year
- Acted as intermediary between management staff and service staff to help drive business in a stress-free work environment that in return drove sales and guest retention
- Acted as a restaurant liaison that helped establish and maintain guest relationships that led to reoccurring business and local marketing internally.
Education
Master of Science - Cybersecurity
Eastern Illinois University
Charleston, IL12.2019
Bachelor of Science in Business - Management Information Systems
Eastern Illinois University
Charleston, IL08.2016
Skills
- Vendor Relationship Management
- Critical Thinking
- Process Improvement
- Compliance Enforcement
- Customer Service
- Project Management
- Risk Analysis and Management
- Team Management
Certification
Comptia Security+
Technology
Windows Vista/7/8/10/ Server 2008/2012/2016, MySQL, Oracle, Access, Remedy – Incident, and change management, Jira, Microsoft - Office, Outlook, Skype, Teams, Visio, Excel, Active Directory, VmWare, Citrix XenApp, V-Sphere, PVS, WebSphere- Linux and Windows, Vulnerator, STIG Viewer, Risk Management Framework, NIST Cybersecurity Framework, NIST 800, Amazon Web Services
Projects
Business System Analysis, Determined operational objectives by studying business functions, gathering information, and evaluating output requirements, Defined project requirements by identifying project milestones, phases, and elements, Designed new computer programs by analyzing requirements, constructing workflow charts, studying system capabilities, and writing specifications, Improved systems by studying current practices and designing modifications, Maintained system protocols by writing and updating procedures, Provided references for users and developers by writing and maintaining documentation
Timeline
Security Technical Program Manager II
AWS Marketplace
01.2023 - Current
Security Program Manager II
AWS Marketplace
06.2022 - 01.2023
Support Engineer I /II(Security SME)
AWS Marketplace
08.2020 - 06.2022
Cybersecurity Risk Administrative Associate (GRC)
University of Illinois
08.2019 - Current
System Security Engineer -Federal (Department of Defense and Veteran Affairs)
Cerner Corp.
02.2019 - 05.2019
System Engineer (Windows)
Cerner Corp.
05.2017 - 02.2019
Business System Analyst
Horizon Hobby
10.2016 - 05.2017
Server/Trainer
Olive Garden
06.2006 - 05.2017
Master of Science - Cybersecurity
Eastern Illinois University
Bachelor of Science in Business - Management Information Systems
Eastern Illinois University