Tom McAndrew is the Director of IT Governance and Compliance Services for Coalfire Systems. Coalfire is a leading firm specializing in IT audits, assessments, compliance, and forensic services. Tom has led a variety of risk assessment engagements in several industries, integrating security and business requirements based on the size and complexity of the organization. He has worked with Executive Management, Business Analysts, and technical staff to incorporate security into their business processes. He has worked in a variety of settings, including financial institutions, retailers, federal and local government, universities, and hospitals throughout the country.

Tom also has extensive experience in the Government sector, as an Information Security Officer for the Navy. He has extensive experience working with NIST 800 series publications, and has worked on numerous accreditation projects (SSAA, DISTCAP, DIACAP). He is currently a reserve officer for the Space and Naval Warfare Command (SPAWAR), integrating security into the System Development Lifecycle for Command, Control, Communications, Computer, and Intelligence (C4I) systems.

Tom holds a Master’s Degree in Information Technology, Master’s Degree in Business Administration, and is a graduate of the US Naval Academy. He has numerous technical and business certifications including CISM, CISA, CISSP, and QSA. Tom’s work experience and educational background allows him to address the real risks and challenges facing an organization to both technical and non-technical staff.