Staff Highlight – Shannon Ortiz

0

This month, the Office of Information Technology is celebrating Shannon Ortiz, Senior Director of IT Security & Assurance, who has been with Fordham for 31 years full-time (or 39 years if you count his high school, college, and student worker years!). Throughout his time at Fordham, he has worked on many interesting projects and developed both professionally and personally. To honor Shannon’s contributions, we are sharing a little about his story.


How long have you been employed at Fordham, and what roles have you held?

Technically, I started as a student worker working for Mark McNeil in the Office of Information Technology (CIMS as it was known back then) in the summer of 1990. I have been working full-time for the University for over 31 years, beginning when I was fresh out of the Gabelli School of Business in June of 1993. I started as a VAX Academic Assistant, reporting to Gerard Cariffe, then the LAN Coordinator managing micro-labs in John Mulcahy Hall and Lincoln Center. My work there proved an easy fit for networking as I shifted to a Network Engineer, reporting again to Mark and then being promoted to Manager of Network Services.

I then took a position working under Jason Benedict and reporting directly to David Whitney as a Systems Engineer. There, I was also promoted to manager within System Services. A few years later, Jason, who had recently started up the University Information Security Office (now Information Security and Assurance), asked if I wanted more responsibilities, more work, and no support staff, to which, of course, I impulsively said yes. Then a few years ago, as part of the recent IT re-org, I was again promoted to my current role as the Senior Director of IT Security & Assurance.

How did you decide to pursue a career in IT security?

I don’t know if I can say I actively pursued a career in IT security, it was just one of those things that I grew into organically. A combination of my personality, the culmination of my experience, and positions held over the years molded me perfectly for this role. I was fortunate enough to have the opportunities that allowed me to grow and ultimately get to where I am today.

What’s the day-to-day of your role like? 

While every day is different and uniquely challenging, a large part of my time is spent in some form of consulting and review role, varying from reviewing plans for a new project to evaluating existing processes and searching for ways to enhance its security. In addition to working with my colleagues within the Office of Information Technology, I frequently partner with Human Resources, Public Safety, and the Office of Legal Counsel, assisting in various investigations. I work closely with our IT Security Engineers to investigate cybersecurity issues reported from various internal and external sources. These include potential compromises, phishing schemes, vulnerabilities, and other real-world threats against the University. At the same time, I am busy coordinating with our IT Risk Analysts to identify, evaluate, and implement various mitigating security controls to minimize risks throughout the University.

What is your proudest accomplishment in IT and/or life in general?

Going back to school many years since I last sat in a classroom to get a Master’s degree in Cybersecurity. This set me up with the opportunity to give back. As a result, I am now an adjunct faculty member teaching Information Security Management and Management and Leadership in Cybersecurity at NYU and Fordham University, respectively.

When you are not working, what are some passion projects/hobbies/activities that you’re involved in?

I’ve always worked with my hands growing up and love working on and fixing things. I enjoy around-the-house DIY projects like painting, spackling, installing doors, building a deck, and even woodworking crafts. I’ve probably fixed every appliance in my house at least once and my lawn equipment many times over. I am terrible at growing grass no matter how hard I try, which is a problem as I also have a passion for golf but get serious “grass envy” every time I play.

How have you grown professionally while on our team?

Through the many opportunities I have had to work in different IT areas and by seeing various aspects of management and leadership from people who I have worked with, I’ve amassed a vast set of skills that I can lean on. I participated in the Regional Leadership Forum program run by the Society for Information Management and the IT Laureates program. These have taught me a tremendous amount, not just about management and leadership but also about continued improvement by being continuously introspective and empathetic toward others. There isn’t a day, maybe an hour, where I don’t repeat or apply something I’ve learned.

What is the most unique part about working at Fordham?

Fordham is my family away from home. Part of that is because when people come to Fordham, they tend to stay for many years, and every new person quickly becomes a part of that family. I’ve fostered relationships with people in just about every department. That support system is helpful and has allowed me to succeed at my job.

What is something fun or interesting that not many people know about you?

I’m a lifelong “metalhead,” with Metallica as my favorite metal band. I can’t seem to eat enough buffalo wings, at least 20+ a week. I also enjoy a good cigar whenever I can get one. Any selfie is usually smoke-filled with my frequently referenced #smokeface caption. My love for trying to fix things warrants repeating, and I’ve figured out over the years that if I can’t fix it, it can’t be fixed, at least, that’s my story, and I’m sticking to it. Lastly, I have a knack for finding typos, which is both a blessing and a curse, mostly curse.

October is Cybersecurity Awareness Month, do you have any helpful tips or resources to highlight?

It may be obvious, but if something feels off, trust your gut and question it. This can be a suspicious email, a strange phone call or text, or maybe you came across something that you probably shouldn’t have access to. If that happens, let us know. We’d rather you have us take a look, regardless of whether it is a real threat, improper sharing, or a legitimate but poorly crafted email. We have two great blogs that may answer your cybersecurity or privacy question. Take a look, use the search bar to find what you’re looking for, and if you don’t see what you’re looking for, let us know, and we’ll add some more relevant information.

Also look out for our Security Awareness Training material, which will be available via MyApps starting October 2024. We have all new content with much more available to suit just about any cybersecurity topic.

We also want to remind you to keep your machines updated, back up your data securely, and encrypt whenever and wherever possible. There are bad actors out there looking to make our lives difficult, let’s not let them win.

Of course, if there is something we can do for you, please contact me or anyone from my team or contact us through the IT Service Desk.


This interview was conducted as part of the Office of Information Technology’s SpotlITe series, in which we highlight staff members who have meaningfully contributed to IT, Fordham, and beyond.

Comments are closed.