ZACHARY CORY
Blaine,MN
Summary
Information security and technology leader with extensive experience in cybersecurity strategy, risk management, governance, and incident response. Proven ability to build and lead high-performing teams, strengthen enterprise security posture, and align security programs with organizational and business objectives. Expertise spans security operations, GRC, policy and controls development, and delivering measurable technology value at the enterprise level.
Overview
18
18
years of professional experience
1
1
Certification
Work History
Senior Manager, Cybersecurity Operations/Engineering
SPS Commerce, Inc
05.2023 - 11.2025
- Led cybersecurity operations, cybersecurity engineering, and security operations center (SOC) teams, implementing enterprise security strategies aligned to business objectives, technology growth, and risk tolerance.
- Directed incident response operations, driving timely containment, root cause analysis, and continuous improvement of response playbooks.
- Strengthened security posture through implementation of risk management strategies, security controls, advanced threat detection capabilities, and NIST CSF and ISO 27001 security frameworks.
- Evaluated, selected, and implemented modern security technologies like SOAR, XDR, AI, DLP, and CSPM to improve threat visibility and infrastructure resilience.
- Partnered with cross-functional teams to embed security best practices into software development and operational processes such as SANS 20 CSC and OWASP.
- Established and maintained consistent cybersecurity policies, procedures, and technical standards to streamline operations and improve compliance.
- Advised executive leadership and external partners on emerging threats, regulatory compliance, and industry best practices while fostering a culture of collaboration and professional growth.
Information Security Manager
Washington County Government
01.2018 - 04.2023
- Led countywide cybersecurity across GRC, security operations, IAM, incident response, and security awareness, managing an eight-person team to protect critical technology and sensitive data.
- Defined and executed enterprise information security strategy, including budget forecasting and long-term security roadmaps aligned to organizational and public sector risk priorities.
- Oversaw regulatory compliance and audit readiness for PCI/DSS, HIPAA, CJIS, and FTI, partnering with department leaders, state/federal partners, and auditors to maintain full compliance.
- Built and operationalized NIST CSF and CIS aligned risk management and incident response programs, including audits, tabletop exercises, continuity planning, and executive-level risk reporting.
- Implemented modern security capabilities (SIEM, EDR/XDR, IAM, vulnerability and vendor risk management, automation, and security awareness), reducing phishing success rates by over 96%, strengthening cyber resilience, and building career growth through multiple promotions.
Information Systems Administrator
Fashion Supplies, Inc
08.2016 - 02.2018
- Created and maintained cybersecurity strategy to secure network data and client information.
- Administered user accounts and access on company's network and software applications to meet least privilege best practices including ensuring PCI/DSS compliance for company sales applications and point-of-sale (POS) systems.
- Managed company website, databases, and Software as a Service (SaaS) applications for secure accessibility to employees onsite or remote.
- Led project development and deployment of new technology systems to include e-commerce website, POS systems, and inventory database that increased sales, simplified operations, and lowered technology costs.
Network & Systems Lead Engineer
District V Gaming, Inc
01.2014 - 07.2016
- Organized and executed information technology systems for company operations to run virtual and onsite technology events.
- Developed, implemented, and maintained databases, hardware and software systems utilizing Google and Microsoft capabilities resulting in successful events.
- Gathered and analyzed feedback from users, peers, and investors to present to company president and CFO to improve growth of operations.
- Ensured data security, network access, and protection of user PCI/DSS data and personally identifiable information (PII).
Information Technology Administrator (Contractor)
Rio Verde Country Club
09.2013 - 03.2014
- Developed recommendations and implemented organizational design for new applications and hardware to improve restaurant and golf pro shop operations, member experience, and overall sales.
- Identified, corrected, and oversaw performance with computer systems running Microsoft OS (XP, Vista, 7, and 8), Zoho databases, SharePoint, point-of-sale (POS), and server and network appliances.
- Implemented and maintained complex database system integrations for member information being utilized by staff in front office, restaurant, golf club, and board of directors.
- Installed new Wi-Fi mesh network for entire country club grounds implementing stronger connectivity, bandwidth, and security resulting in high satisfaction from club members, guests, and staff.
Assistant Special Security Officer
United States Marine Corps
02.2008 - 06.2013
- Led teams of 3 to 14 Marines supporting intelligence capabilities, system assets, information security, and network integrity on multiple sensitive networks for over 3,000 military personnel world-wide.
- Ensured compliance to Department of Defense, Department of Navy, and Office of the Director of National Intelligence for physical, personnel, and information security.
- Created and presented intelligence briefs, threat and vulnerability assessments, risk management reports, and incident investigations to executive level staff to protect highly sensitive information.
- Managed and maintained Joint Worldwide Intelligence Communications System (JWICS) network supporting over 500 Top Secret/SCI security clearance personnel and over 100 classified systems on multiple networks for 1st Marine Division and 15th Marine Expeditionary Unit in US and overseas.
- Awarded the Navy and Marine Corps Commendation Medal & Navy and Marine Corps Achievement Medal, as well as 15 additional awards and four promotions.
Education
Master of Science - Security Technologies
University of Minnesota - Twin Cities
Minneapolis, MN06-2026
Bachelor of Science - Information Technology
University of Phoenix
Costa Mesa, CA05.2018
Skills
- Strategic Planning
- Technology Leadership
- Risk Management
- Vulnerability & Threat Mitigation
- Cross-functional Collaboration
- Incident Response
- Team Building & Development
- NIST, ISO, CIS, & ITIL Frameworks
Certification
- CISSP and CISM (Expected completion in 2026)
- Minnesota Technology Association (MnTech) ACE Leadership Certification
- ITIL 4 Foundations Certification
- Bureau of Criminal Apprehension (BCA) Local Agency Security Officer (LASO) Certification
- ODNI National Counterintelligence Executive Mission Integration Directorate ICD 704 Certificate
- Signals Intelligence Communicator / Cryptologic Technician Course
Timeline
Senior Manager, Cybersecurity Operations/Engineering
SPS Commerce, Inc
05.2023 - 11.2025
Information Security Manager
Washington County Government
01.2018 - 04.2023
Information Systems Administrator
Fashion Supplies, Inc
08.2016 - 02.2018
Network & Systems Lead Engineer
District V Gaming, Inc
01.2014 - 07.2016
Information Technology Administrator (Contractor)
Rio Verde Country Club
09.2013 - 03.2014
Assistant Special Security Officer
United States Marine Corps
02.2008 - 06.2013
Master of Science - Security Technologies
University of Minnesota - Twin Cities
Bachelor of Science - Information Technology
University of Phoenix