Andrew is a Principal Program Manager | Architect in Microsoft’s Cloud and Artificial Intelligence (C+AI) Security team.
Architecting and Operating some of the largest Computer Network Defense (CND) systems in the world, Andrew focuses on “detecting the undetectable” as well as responding to and recovering from cyber intrusion sets.
Andrew was specially thanked in the U.S. Government-wide guidance on Recovery, in the Special Publication (SP) 800-184, “The Guide for Cybersecurity Event Recovery” authored by National Institute of Science and Technology (NIST).
Before joining the C+E Security team, Andrew was a Solutions Architect focusing on Recovery for the Microsoft Enterprise Cybersecurity Group (ECG; now referred to as the Cyber Security Group; CSG) Detection and Response Team (DaRT) team. Here, Andrew focused on developing comprehensive and methodical Recovery plans for customers after sophisticated human adversaries were discovered. Andrew was a Cybersecurity Architect to Fortune 100 companies as well as the U.S. Government. Before joining Microsoft he worked for the Department of Defense where he architected and operated many host-based Department-wide capabilities.