Author: Andrew Hay

Andrew, What’s Up?

dohHey All,

I thought I’d drop a quick post to let you know what’s been keeping me occupied (and away from blogging) for the last few weeks:

Studying For My CISSP Exam

As many of you know, out of spite, I’ll be taking my CISSP exam on June 28th in Ottawa, Ontario, Canada. This is taking quite a bit of my time so I am very “head-down” trying to jam as much information into my head as possible. Wish me luck!

Writing Another Book

I’ve also signed on to write the Nokia Firewall, VPN, and IPSO Configuration Guide (Syngress, ISBN 9781597492867). Note to self, don’t agree to author a book when planning for a large exam.

Drafting Call-For-Papers for Various Conferences

I’ve been trying to get a bunch of CFPs drafted for various fall conferences. Takes a lot of time to produce quality papers that have a chance of being accepted.

SANS GIAC Gold Paper

My SANS GIAC GCIH Gold paper is due August 22nd, 2008 so I’ve been working on getting all the information I need together to draft a killer paper.

Busy, busy, busy 🙂

Quoted in Network World: 6 burning questions about network security

Hello All,

To my surprise, a conversation that I had with Ellen Messmer, of Network World, evolved into an article entitled the 6 burning questions about network security. We talked for a good 30 minutes on virtualization, where it’s at, and where it’s going. From the article:

Some security vendors are convinced that the main VM software developers are in such a rush to get their products out to grab market share that as Andrew Hay, product program manager at Q1 Labs, puts it, “security is an afterthought.”

Hay notes there’s no Netflow-enabled virtual switch to help with activity monitoring. “You’re creating a separate network that happens to reside on a box,” Hay says. “But no one pushes for flow analysis in the virtualized world.”

Should all this stop IT managers from going virtual? The bottom line, according to Hay: “It would be best to research your options before going full tilt.”

You can check out the full article here.

SANS Tool Talk Webcast: “Log Management: No Longer Optional”

sansI’ll be presenting a SANS Tool Talk Webcast entitled “Log Management: No Longer Optional” on Tuesday, June 2nd at 1pm EST.

About the session:
Both network and security professionals agree – a log management solution is no longer optional. It’s now a required tool in their arsenal.

Unfortunately, many of their log management projects have failed because the solution they chose was unable to support the size and scope of the deployment and/or effectively deliver useful results.

During this webcast Andrew Hay will discuss important considerations when selecting and deploying a log management solution for your organization and how to avoid some of the pitfalls.

Join this webcast and learn about:

  • Drivers of log management, including security best practices and regulatory mandates
  • Architectural considerations for supporting large distributed enterprise networks
  • Deployment considerations for supporting a multi-vendor network
  • Correlation considerations to effectively make sense of enterprise-wide network & security events
  • Advanced security management considerations to improve an organization’s ability to detect more complex integrated network threats
  • Reporting, auditing and forensics considerations that support compliance initiatives

Sign up for the webcast here.

Scroll to top