IT Professionals Day: Q&A with Cybersecurity Architect Wade Schimmoeller
Business News
Findlay, Ohio, people,The IT professionals at Marathon Petroleum play an important role in the daily operations of our business, making an impact by providing technical innovation, security, reliability and assistance for all employees. In recognition of IT Professionals Day, we are spotlighting Wade Schimmoeller. He is a Senior Cybersecurity Architect who started working at Marathon Petroleum’s Findlay, Ohio, headquarters in 2018. Learn more about Schimmoeller and his career in IT.
Why did you decide to become an IT Professional?
My journey in cybersecurity began when I was 14, driven by a natural curiosity about how technology works. I quickly found myself discovering security flaws in various systems and became fascinated by the challenge of outthinking the intended design or purpose of technology. That thrill ignited my passion, and I knew early on that I wanted a career in cybersecurity, originally aspiring to be an ethical hacker. While I eventually pursued a different path within the field, I’ve consistently applied a hacker’s mindset and skills in every role I’ve held. I believe that the ability to think like a hacker has been pivotal in shaping my career and has played a major role in my success in cybersecurity.
Explain what you do at Marathon Petroleum.
I focus on driving innovation and enhancing security through the implementation of tools and processes that safeguard our organization. This involves prioritizing our team's work, communicating and collaborating with business partners, contributing to the team's vision and roadmap, and ensuring that our solutions align with the organization’s broader security objectives. While I focus on the strategic aspects of our work, I still leverage my technical knowledge to support the team, provide guidance on complex security challenges, and ensure we make informed decisions.
What is the best part about your job?
The best part of my job is working with our Infrastructure Security team. As an agile team, we meet almost daily, and while we stay focused on our goals and objectives, we also have a lot of fun along the way. We've built a highly collaborative, trusting and enjoyable culture that makes every day exciting. The camaraderie is incredible, and each person brings their own unique strengths to the table. This is one of the best teams I’ve had the pleasure of working with throughout my career.
What is the most challenging part of your job?
The most challenging part of my job is staying up to date with emerging technologies. Cybersecurity requires a broad understanding of many technologies to ensure everything is adequately secured. While this can be demanding, it’s also one of the things that makes the job exciting, as I get to continuously learn and innovate.
How did you end up in an IT security hall of fame?
I was recognized by a third-party company and added to its IT security hall of fame for discovering a serious flaw in their product. I found a vulnerability in the email protection system that allowed fake emails to be sent from their customers’ accounts, bypassing key security measures. Cybercriminals could have exploited this flaw to send large-scale phishing emails that appeared to come from its customers, tricking people into giving away sensitive information or money. I reported the issue to the company, along with a solution, which led to my recognition.
What is one thing everyone should do to protect themselves from cyber scams?
To protect yourself from cyber scams, whether at home or at work, exercise caution before providing financial or personal information. This applies to messages from unknown senders as well as those that appear to be from legitimate sources but seem suspicious. Whether the communication comes via email, SMS text, or chat, verify the authenticity of the message through trusted channels before sharing any sensitive information. Additionally, enable multi-factor authentication (MFA) on your accounts to add an extra layer of security. This combined approach helps prevent falling victim to phishing attempts and other scams designed to steal your money or identity.
Interested in a Career in IT?