Andrew is a Principal in Deloitte & Touche LLP’s Cyber Risk Services Practice and specializes in assisting clients with the risk associated with cyber threats. Andrew currently serves as the U.S. leader of Deloitte’s Cyber Strategy, Defense, and Response practice. In this capacity, he is responsible for Deloitte’s Cyber Strategy and Governance practice, Cyber Threat intelligence practice, and Cyber Defense and Incident Response teams. His focus is on the development and delivery of cross-industry services helping clients improve their preparedness for cyber-attacks, and accelerating enterprise business recovery in the wake of cyber incidents. Andrew also works closely with Boards of Directors and executive teams on the governance of Cyber Risk including serving as the chair of the Governance Center Cybersecurity Working Group Cyber Security working group for The Conference Board. Andrew has 20+ years of experience in information security and privacy and is a frequent speaker on Cyber Risk topics for boards, conferences and the media.