About Andrew Hay

Andrew Hay is an information security industry veteran with close to 20 years of experience as a security practitioner, industry analyst, and executive. As the Chief Information Security Officer (CISO) at DataGravity, Inc., he advocates for the company’s total information security needs and is responsible for the development and delivery of the company’s comprehensive information security strategy.

Andrew has served in various roles and responsibilities at a number of companies including OpenDNS (now a Cisco company), CloudPassage, Inc., 451 Research, the University of Lethbridge, Capital G Bank Ltd. (now Clarien Bank Bermuda), Q1 Labs (now IBM), Nokia (now Check Point), Nortel Networks, Magma Communications (now Primus Canada), and Taima Corp (now Convergys).

Andrew is frequently approached to provide expert commentary on security-industry developments, and has been featured in such publications as Forbes, Bloomberg, Wired, USA Today, International Business Times, Sacramento Bee, Delhi Daily News, Austin Business Journal, Ars Technica, RT, VentureBeat, LeMondeInformatique, eWeek, TechRepublic, Infosecurity Magazine, The Data Center Journal, TechTarget, Network World, Computerworld, PCWorld, and CSO Magazine.

Today I purchased the Hacker Techniques, Exploits & Incident Handling track from SANS so that I can obtain my GIAC Certified Incident Handler (GCIH) designation. I'm very excited about this track as I get to: Evaluate the SANS OnDemand method of instruction which I hope helps me manage my time better than the SelfStudy method. Learn things I've always been curious about but have never had in-depth experience in. I am hoping that this training will add to my Intrusion Detection In-Depth training and associated GIAC Certified Intrusion Analyst (GCIA) designation I achieved by using the SelfStudy method....

Read More

Well I heard from two customers today that are currently experiencing the effects of the MS06-040 worm. They've noticed quite a lot of traffic on port 445 and external connection attempt using IRC. For a full writeup please see the following link: MS06-040: BOLO -- Be On the LookOut (NEW)...

Read More