About Andrew Hay

Andrew Hay is an information security industry veteran with close to 20 years of experience as a security practitioner, industry analyst, and executive. As the Chief Information Security Officer (CISO) at DataGravity, Inc., he advocates for the company’s total information security needs and is responsible for the development and delivery of the company’s comprehensive information security strategy.

Andrew has served in various roles and responsibilities at a number of companies including OpenDNS (now a Cisco company), CloudPassage, Inc., 451 Research, the University of Lethbridge, Capital G Bank Ltd. (now Clarien Bank Bermuda), Q1 Labs (now IBM), Nokia (now Check Point), Nortel Networks, Magma Communications (now Primus Canada), and Taima Corp (now Convergys).

Andrew is frequently approached to provide expert commentary on security-industry developments, and has been featured in such publications as Forbes, Bloomberg, Wired, USA Today, International Business Times, Sacramento Bee, Delhi Daily News, Austin Business Journal, Ars Technica, RT, VentureBeat, LeMondeInformatique, eWeek, TechRepublic, Infosecurity Magazine, The Data Center Journal, TechTarget, Network World, Computerworld, PCWorld, and CSO Magazine.

Join Andrew Hay for the SANS@Home SEC401R review/preparation session for the GIAC Security Essentials certification exams. This six session review course will allow GSEC candidates to prepare to pass the GSEC exam. Each session focuses on a particular book of the Security 401: SANS Security Essentials material. Class format is to review GSEC practice exam questions and answers to make sure that students understand the material covered in each book. Covering Exam 1 Thursday, November 1st, 2007 - Book 401.1, Day 1 Thursday, November 8th, 2007 - Book 401.2, Day 2 Thursday, November 15th, 2007 - Book 401.3, Day 3 Covering Exam 2 Thursday, November 29th,...

Read More

It's good to see groups of people getting together to discuss important topics like log management in academic settings. If you go to the University of Florida I strongly suggest you drop by to listen and/or contribute :) If you don’t know what’s happening with your computer, then you don’t know what’s happening to your data. How to keep up? Centralized Log Management is the trick, and it doesn’t have to be hard, either. Knowing the best tools and practices can make your life easier. The next session on Tuesday, Oct.30, in Room 286 of Reitz Student Union will offer information about...

Read More

I've been thinking of doing this for a while but have never found the time until now. Here is a list of what I feel are the most valuable certifications in the security industry, listed in Basic, Junior, Intermediate, and Senior categories. I'll be covering these certifications over four articles starting with the Basic category. Please note that: This is my opinion I am not saying you need all of these certifications, I am just listing those that I feel are at a basic level and may help you start your security career I fully expect to catch some flack for my...

Read More