Security Consultant

Andy has been in Information Security for over 15 years and has worked in Aerospace & Defense, Insurance, Telecom, and Financial Services. He has experience in IT Audit, writing information security policies, computer forensics and computer investigations, certification and accreditation, physical security, vulnerability scanning and remediation, and information security risk assessment. He also has worked with various frameworks such as ISO27001 and NIST 800-53.

Andy is a CISSP, CISA, and maintains the SANS GSEC, GCIH, and GCCC certifications.