Andrew Scott Cybersecurity Practice Manager
Andrew has provided oversight, guidance, and counsel in the areas of IT & Information Security serving in a variety of roles for the public and private sectors, including working for a Managed Service Provider (MSP), a city government, an R1 research university, and internationally as a consultant for a software company in Germany.
He has also detected and mitigated a ransomware attack that occurred while working for a Massachusetts municipality, and subsequently conducted follow-up user education sessions for staff. His city IT business analysis projects resulted in substantial cost-savings, including covering Andrew’s salary.
He is experienced working with the following standards or regulated data types: NIST 800-171, ISO 27001, HIPAA, ITAR, GDPR, MA Public Records and German BSI.
Andrew earned his Bachelor’s degree at the University of Massachusetts Amherst and his Masters, Post-Graduate Diploma from the University of Edinburgh. He also has language skills in conversational German.