Andy is CEO and Co-Founder of BreachRx, provider of the first intelligent incident response platform designed for the entire enterprise.
Prior to founding BreachRx, Andy spent 15 years in privacy law and large-scale commercial litigation. This extensive background provided him with a unique perspective on the severe and long-lasting impacts of data breaches, often exacerbated by disparate teams responding to incidents from their own silos. Recognizing these challenges and those posed by increasing cyber regulations that punish victims, Andy co-founded BreachRx to transform incident response and reporting from chaos into a transparent and routine business process that minimizes risk for companies and their C-level executives.
Andy is an active member of The Sedona Conference, a nonpartisan, nonprofit research and educational institute focused on advancing law and policy in numerous areas, including data security and privacy law. He has worked with fellow members to develop best practice guidelines for maintaining attorney-client privilege in the context of cybersecurity incident response. Andy is also a frequent speaker at privacy and security conferences, particularly on topics around the modernization and professionalization of cybersecurity incident response and reporting.
Andy holds a BA from Washington and Lee University, a JD from the University of Arkansas, and an MBA from the Wharton School of the University of Pennsylvania.