Shelby Brooks is an Associate Principal Consultant at Dragos, Inc. on the Professional Services team, where she leads OT cybersecurity engagements for industrial organizations across electric, oil and gas, and manufacturing sectors. Shelby performs architecture reviews, OT cybersecurity assessments, tabletop exercises, and maturity assessments for Fortune 500 companies, providing strategic guidance aligned with industry frameworks including MITRE ATT&CK TTPs, NIST Cybersecurity Framework, and CIS Controls.
Shelby has developed and facilitated tabletop exercises tailored to operations, security, and executive teams — including exercises with over 300 participants. Her ability to bridge technical depth with business context enables her to deliver practical, threat-informed recommendations that help organizations strengthen and mature their OT security programs.
Prior to joining Dragos in 2022, Shelby spent eight years at LG&E and KU Energy, where she held roles spanning IT Security Risk Management, Federal Regulation and Policy, and Accounting. That cross-functional experience in the energy sector gave her a firsthand understanding of how critical infrastructure organizations operate and where security must be embedded across both technical and business processes. Earlier in her career, Shelby held accounting internships at Humana and LG&E and KU, as well as a full-time audit internship with Ernst & Young.
Shelby holds a Master of Business Administration and a Bachelor of Arts in Accounting from Bellarmine University in Louisville, Kentucky. Her technical background is supported by several industry-recognized certifications, including the GIAC Critical Infrastructure Protection (GCIP), Global Industrial Cyber Security Professional (GICSP), Certified Information Systems Auditor (CISA), ITIL Foundation Level, and GIAC Information Security Fundamentals (GISF).
Want Shelby’s frontline perspective for an upcoming event or news feature? Send your request to press@dragos.com.