Summary
Andrew Hay is a veteran information security professional with more than 12 years of experience related to endpoint, network and security management across various product sectors including security information and event management (SIEM), log management, deep packet inspection (DPI), vulnerability management, intrusion detection and prevention (IDS/IPS), firewall, threat intelligence, application whitelisting, network and host forensics, incident response and governance, risk and compliance (GRC). Andrew is an author of multiple books on security topics and has written articles for top trade publications like Information Week, DarkReading and Network Computing. He has received multiple industry honors and awards and frequently provides expert security commentary for journalists and industry events.
Specialties
Product management, product marketing, strategy, program management, roadmap development, venture funding, competitive analysis
Experience
Senior Security Analyst, Enterprise Security Program
The 451 Group
Privately Held; 51-200 employees; Information Services industry
May 2010 – Present (1 year 10 months)
Led the Enterprise Security Practice’s (ESP) research with regards to network, endpoint and security management solutions including, but not limited to security information and event management (SIEM), log management, deep packet inspection (DPI), vulnerability management, intrusion detection and prevention (IDS/IPS), firewall, threat intelligence, application whitelisting, network and host forensics, incident response and governance, risk and compliance (GRC).
Assisted venture capital, private equity and investment banking firms with due diligence research and strategic advisory services. Instrumental in placement of tens of millions of dollars in venture-backed investment.
Advised security software vendors on product roadmap, positioning, marketing and integration in addition to potential partnership and acquisition strategies.
Collaborated with peers to produce high quality, relevant, clear, actionable and timely advisory research documents. Fulfilled timely yearly market share and quarterly forecast sizing activities in order to deliver accurate, defensible market share/size/forecasts and technology segment statistics.
Provided technology purchasing advice to numerous Fortune 2000 companies looking to implement better organizational security controls. Fulfilled high value client interactions including presentations, inquiries and vendor briefings. Maximized client satisfaction through timely and well prepared responses to inquiries.
Founder
InnovationKeg
December 2011 – Present (3 months) Lethbridge, Alberta, Canada
InnovationKeg is an open incubator that provides strategy and innovation advisory services for software startups. Based in Lethbridge, Alberta, Canada, InnovationKeg offers assistance to any software firm (regardless of geography) that requires a network of business advisors, investors and strategists - but that may be too early-stage to pay for it.
Blogger
Dark Reading
August 2010 – Present (1 year 7 months) Online
Dark Reading's Security Monitoring Tech Center is your portal to all the news, product information, technical data, and best practices related to the monitoring of IT security events and status. Written for executives and businesspeople as well as security and IT professionals, the Security Monitoring Tech Center is a single community dedicated to the tools and techniques used to analyze security activity and detect potential threats to the business.
Advisory Board Member
GIAC
Privately Held; 11-50 employees; Information Technology and Services industry
February 2010 – Present (2 years 1 month) Remote
The GIAC Advisory Board is made up of GIAC certified professionals who wish to give back to the security community by taking an active role in the GIAC program. The GIAC Advisory Board provides a forum where IT Security professionals can exchange ideas and advice.
Principal Security Analyst
University of Lethbridge
Educational Institution; 10,001+ employees; Higher Education industry
August 2009 – April 2010 (9 months)
Developed plans to safeguard computer files and meet emergency data processing needs. Created all documentation pertaining to the University of Lethbridge’s information security program including, but not limited to, the development and maintenance of standards, guidelines, procedures and policies.
Implemented legislated information protection requirements as mandated by federal and provincial mandates. Tested systems to ensure effective security measure implementation. Consulted with other computer specialists and organizational personnel about issues such as information access requirements and programming changes.
Served as organization’s security expert in various interdepartmental architecture and project planning meetings. Advised IT on product upgrade and new technology purchases to ensure selected products aligned with the information security office’s mission. Served as an evangelist for the University, its employees and its services by presenting at various security conferences and interfacing with the media.
Senior Security Analyst
Capital G Ltd.
Privately Held; 51-200 employees; Banking industry
September 2008 – July 2009 (11 months)
Developed plans to safeguard computer files and meet emergency data processing needs. Coordinated the implementation of computer systems plans with other stakeholders within the organization and with partners. Implemented legislated information protection requirements as mandated by federal and international monetary regulated mandates. Monitored the use of information and regulated access to safeguard it.
Tested systems to ensure effective security measure implementation. Consulted with other computer specialists and organizational personnel about issues such as information access requirements and programming changes.
Served as organization’s security expert in various interdepartmental architecture and project planning meetings. Advised IT on product upgrade and new technology purchases to ensure selected products aligned with the information security office’s mission. Served as an evangelist for the company, its employees and its services by presenting at various security conferences and interfacing with the media.
Engineering, Product and Program Manager
Q1 Labs
Privately Held; 51-200 employees; Computer & Network Security industry
February 2005 – September 2008 (3 years 8 months)
Managed a team of 7 software engineers responsible for the integration of security and vulnerability technologies. Responsible for all human resource management aspects of the engineering team including, but not limited to, hiring, absence tracking, new hire training, ongoing motivation and conflict resolution.
Orchestrated the removal of roadblocks for the development team. Delivered superior quality work on time and within budget. Formulated and defined scope and objectives including requirements documentation, project specifications, QA acceptance criteria and risk assessments. Reviewed status reports prepared by project personnel and adjust schedule as required.
Acted as primary manager for entire duration of the integration services project portfolio. Interfaced with VP and C-level executives to ensure customer and business issues were properly documented. Established and maintained relationships with product and portfolio managers from various vendors and organizations to better understand product requirements and integration strategies. Worked with the managers of other groups to define development impacts, schedules and resource allocation. Coordinated with marketing teams to ensure that marketing initiatives aligned with product specifications and functionality.
Kept senior management team abreast of emerging endpoint, network and security management technologies. Researched and documented integration requirements for 3rd party solutions. Advised the senior management team on product direction recommendations and suggestions based on competitive research. Served as an evangelist for the company, its employees and its products by presenting at various security conferences and interfacing with the media.