Shawn Wells

Cybersecurity & Information Assurance

image

With 22+ years of information assurance and technical leadership experience, including being awarded the "2019 Pinacle Award for Cybersecurity Executive of the Year" by WashingtonExec Magazine, and "2014 Rising Star" by Federal Computer Week (FCW) Magazine, I help customers understand where and how cyber threats originate, build organizational capabilities to identify patterns of adversarial actions, and architect technical solutions to mitigate threat actors.

I offer a unique background in scaling organizational capabilities -- including pre and post-IPO startups, and business units within established firms -- and building hypergrowth technical organizations. Examples include joining Red Hat as an early employee (#136!) and helping build its $540M public sector practice from scratch, and scaling CrowdStrike's partner buisiness from $20M to $250M+ in two years.

Security clearance details upon request.


Work Experiences

Global Vice President of Solution Architecture
Business Development, Alliances, and Channels
CrowdStrike

May 2020 - February 2022

Objectives:

  • Teamed with the Global VP of Partnerships and Alliances, led the global technical presales organization accountable for the entirety of CrowdStrike's $250M+ partner sourced revenue and $25M+ discrete revenue through Managed Security Service Providers (MSSPs). Scope included Global System Integrators (GSIs), Managed Security Service Providers (MSSPs), OEMs, Cloud Solution Providers (CSPs), channel partners, and technology alliance partners.
  • As CrowdStrike transitioned from predominately direct-sell revenue to predominately partner sourced, ensured partner readiness to source deals, run technical pilots, and build sustainable practices around CrowdStrike offerings.
  • Defined and scaled presales process and systems, including organizational design, forecasting methodology, metrics tracking and analysis, and fiscal year planning. Prepared to scale the Solution Architecture organization from 7 to 100+ associates within two years.

Results:

Senior Principal & Chief Security Strategist
Red Hat Public Sector

September 2015 - May 2020

Objectives:

  • 1 of 8 Senior Principals globally at Red Hat (out of 19,000 associates). Only senior leader dedicated to Information Assurance/Cybersecurity in Red Hat's global field sales organization.
  • Build a portfolio of information assurance/cybersecurity technology initiatives that will drive future competitive advantage of Red Hat in the Public Sector vertical.
  • As a member of the Office of the Chief Technologist, partnered with executive leadership to manage a $200M portfolio of strategic product sales and $700M portfolio of end-agency programs, while contributing an average 18% year-over-year growth.
  • Personally accountable for all cybersecurity baselines relating to Red Hat products, as published in the NIST National Checklist Program (the U.S. Government repository of publicly available security checklists that provide low level guidance on security settings).
  • Served as "trusted advisor" to Department of Defense and the National Security Agency, collaborating to establish nation-state level cybersecurity guidance and security policies on operating systems, hypervisors (IaaS), container platforms (PaaS), and middleware (PaaS) for the United States Government.

Results:

  • Recruited and led Red Hat's team that published national-level guidance on operating systems, hypervisors (IaaS), automation tooling, and Kubernetes-based container platforms (PaaS). Examples include:
  • Working with the product management organization, established funding and engineering processes for Red Hat Enterprise Linux to achieve multiple federal certifications such as NIAP/Common Criteria, FedRAMP, and FIPS 140-2.
  • Built a portfolio of information assurance/cybersecurity technology initiatives that drove competitive advantage of Red Hat in the Public Sector vertical. Examples, specific to collaborations with Intel Corporation, include:
    • Software Guard Extensions (SGX): Enhancement of trusted computing by creating an execution environment that isolated compute operations from manipulation or disclosure.
    • Enhanced Privacy ID (EPID): Enhance the global posture of IoT devices by establishing a standard for unique identification of devices, which can serve as basis for authentication.
    • Secure Boot using TXT and TPM: Verifies boot process, enables software identification, and enforces platform boot policies. Gives the Linux community the ability to ensure their devices were not tampered with, an essential element of secure supply chains for both software and hardware.
  • Developed offensive computer network operations (CNO) tools, particularly regarding tactics, techniques, and procedures (TTPs) to exploit Linux-based endpoints.
  • Provided all-source intelligence analysis using HUMINT, SIGINT, and OSINT, to identify nation-state entities performing malicious acts in the open-source community; utilizing the global reach and resources available at Red Hat, helped U.S. Intelligence Community elements to identify methods, motives, and capabilities of threat actors to recognize emergent patterns and linkages to adversarial campaigns.
  • Represented Red Hat in cybersecurity matters in the press, to industry analysts, and external events such as conference keynotes and presentations.

Director of Innovation Programs
Red Hat Public Sector

March 2013 - September 2015

Objectives:

  • Faced with diminishing revenue from the traditional Enterprise Linux product line, tasked by the SVP and General Manager of Red Hat Public Sector to expand Red Hat's brand identity beyond Linux (within the U.S. Government market).
  • Encourage the U.S. Government to move from consumer of open source to collaborator. Chartered to collaborate with the Government on "Radical Innovations," defined as technologies that were new to existence, and "Next Generation Offerings," which pushed existing technologies into different operating windows

Results:

  • As a direct report to the Vice President of Public Sector Business Development, and measured on top-line business development goals, assisted in the delivery of $256M against $247M system integrator/"sell-through" quota (104%) plus $636.5M against $651M government/"sell-to" quota (98%) while in the role.
  • Successfully partnered across defense, intelligence, federal, and civilian submarkets in the creation, and further productization, of several net-new capabilities that expanded Red Hat's brand awareness beyond Linux.
    • An industry first, collaborated with Lockheed Martin to create a supercomputer capable of simultaneously processing data at multiple classification levels. Saved ~$25M+ in computer hardware costs for a U.S. Intelligence Community customer which was reinvested into consulting services.
    • Prepared Linux for use in tactical vehicles and unmanned aerial vehicles (UAVs) for the U.S. Army, pushing Red Hat into the automotive and aviation markets.
    • Awarded "2014 Rising Star" by Federal Computer Week (FCW) Magazine for partnering with NSA Information Assurance and NIST to develop cybersecurity compliance automation tools and content. This automation was fundamental in helping the U.S. Government prepare for DevOps; prior solutions required manual cyber compliance reviews that would fundamentally prevent the government from adopting continuous integration and continuous delivery (CI/CD).

Technical Director of U.S. Intelligence Programs
Red Hat Public Sector

December 2009 - March 2013

Objectives:

  • Red Hat's revenue from the U.S. Intelligence Community was primarily from the National Security Agency (NSA). Asked to expand Red Hat's technical initiatives across all elements of the United States Intelligence Community and build a sustainable business.

Results:

  • Recruited and shaped technical pre-sales team. This included staff management, budgeting, territory planning, process development, customer escalations, product management liason, and forecasting.
  • Delivered $49.25M against $49.29M total quota (99.9%) while realizing an average 222.97% YoY quarterly revenue growth.
  • Partnered with DoDIIS Software Licensing Team to establish first Red Hat Enterprise License Agreement (ELA) with the Defense Intelligence Agency (DIA). Awarded Red Hat's "Public Sector Deal of the Year" award.
  • Negotiated with CIA Software Acquisition on the first Red Hat Blanket Purchase Agreement (BPA) for use across all directorates of the Central Intelligence Agency.
  • Worked with the FBI National Data Exchange (N-Dex), a multi-year effort to gather crime and incident data from 18,000-plus law enforcement agencies into a single, web-accessible investigative tool. Solution delivered 99.8% uptime, over 3,000 concurrent users, and scaled to ingest over one million new records per day. Customer go-live was covered by Government Computer News Magazine.

Global Practice Lead of System z Sales, Strategy, and Marketing
Red Hat

June 2008 - December 2009

Objectives:

  • Red Hat faced increased competitive pressure in the Enterprise Linux market from Novell SuSE, a competing Linux distribution. The majority of Novell SuSE's revenue originated from selling Linux to IBM System z (mainframe) customers.
  • Chartered to remove Novell SuSE's final foothold in the Linux market and ensure Red Hat's leadership in the IBM System z space.

Results:

  • Built international team that developed and executed Red Hat's go-to-market strategy for the IBM System z platform. Delivered an average of 7.7% of Red Hat's quarterly global revenue while averaging 127% quota attainment while in role.
  • Increased annual System z platform gross revenue from $5.2M to $34.9M (+570%) by diversifying sales from predominately operating system products to include Java middleware and systems management.
  • Focused on international growth, delivered +190% YoY growth in EMEA, +273% YoY growth in APAC, and +64% in Americas.
  • Increased Gartner-estimated Linux on System z market share from 18.36% to 45.98%, reflecting the sale of more net-new Red Hat deployments than net-new IBM hardware sales (delivering on the commitment to rapidly displace Novell SuSE).
  • Worked with Product Management to redesign Linux for System z engineering processes. Efficiencies led to per-unit net revenue (margin) increase from $3,024/year to $10,530/year.
  • Established net-new reference customers across global sectors including government, manufacturing, banking, insurance, and other key industries, such as:

Certifications

Data Science
NVIDIA NVIDIA Logo
NVIDIA Certificate of Competency
Fundamentals of Deep Learning for Computer Vision



Cybersecurity / Information Assurance
CrowdStrike CrowdStrike CCFA
ISACA ISACA CISA ISACA CISM
ISC2 ISC2 CAP ISC2 SSCP ISC2 CISSP ISC2 CISSP ISSAP ISC2 CISSP ISSMP ISC2 CISSP ISSEP ISC2 SSP Java



Project Management
ScrumAlliance CSM Logo CSPO Logo CSP-SM Logo CSP-PO Logo
Project Management Institute (PMI) PMI-ACP Logo PMP Logo



Education

IN PROGRESS
Harvard Logo

Harvard University
[IN PROGRESS] Master of Liberal Arts, Cybersecurity


Estimated completion 2024.
Harvard Logo

Western Govenors University
[IN PROGRESS] Master of Business Administration (MBA) - Information Technology Management


Estimated completion August 2022.
Imperial College of London Logo

Imperial College of London
[IN PROGRESS] Specialization Certificate, Epidemiology for Public Health


Enrolled in this specialization certificate to begin exploring how epidemiological techniques can be applied to empirically measure the impact, spread, and risk of cybersecurity threats. The goal is to borrow scientific techniques from the epidemiology community, consider their limitations, and potentially design cybersecurity studies using similar processes and approaches.

Estimated completion August 2022.

COMPLETED
NCS Logo

National Cryptologic School


267 credit hours of combined classified and unclassified graduate and doctoral level training through the National Cryptological School at Fort Meade / National Security Agency. Focused on Global Networks, Operational Assurance, Information Assurance, and Operational COMSEC.

CMU Logo

Carnegie Mellon University, Heinz College
Chief Information Officer (CIO) Certificate


CIO Institute is a cooperative venture between the federal government and select institutions of higher learning to offer graduate level programs that directly address federal executive core competencies based on Clinger-Cohen legislation. The six-month program takes an interdisciplinary approach to information and technology management. It is designed for CIOs, CTOs, CSOs, other executives with IT oversight responsibilities, and their direct reports. Led to the Federal CIO University Certificate as issued by the General Services Administration. Carnegie Mellon University’s Heinz College is consistently ranked #1 in Information and Technology Management.

Georgetown Logo

Georgetown University, School of Continuing Studies
Certificate in Project Management


Program strongly emphasized the people skills and real-world practices required to successfully manage projects on time, on budget, and within scope. Gained analytical frameworks, strategic planning skills, and managerial insight to be a more effective project leader. The program also addressed the role of project manager in cultivating and supporting innovation in project teams.

MIT Sloan Logo

MIT, Sloan School of Management
Executive Certificate in Strategy and Innovation


Study of breakthrough concepts that can help to identify, capture and deliver on great ideas and to successfully drive innovation throughout the organization. Learned new strategic approaches and tools for managing products, technology, and innovation, as well as for discovering new sources of profitability.

MIT Sloan Logo

MIT, Sloan School of Management
Executive Certificate in Management and Leadership


Building upon the Exec. Certificate in Strategy and Innovation, the curriculum focused on core business competencies in marketing, finance, organizational processes, change management, and systems thinking.

Stanford Logo

Stanford University, Center for Professional Development
Energy Innovation and Emerging Technologies Certificate


Program examined emerging technologies that will transform how we obtain, distribute and store energy. Targeted focus on sensor networks within nuclear-powered Smart Grid infrastructures in support of data analytics and intelligence gathering.

WGU Logo

Western Govenors University
Bachelor of Science - Cybersecurity and Information Assurance


Degree program was designed with input from cyber security experts and leading IT employers to meet the most recent Department of Homeland Security (DHS), and National Security Agency (NSA) guidelines. This program has also helped WGU receive the designation of a National Center of Academic Excellence in Cyber Defense through 2026.


Press, Media, Public Speaking

Extensive experience speaking to the press, giving televised interviews, and conferences (keynotes and technical sessions).

Refer to https://speaking.shawnwells.io/ for speaking sessions, videos, and PDFs.