Drew Blandford-Williams: A Lifetime in Information Security

---

Despite how scary those cloak-and-dagger cyber terms may sound, and although business activities tied to improving cyber security consulting can be challenging, with some focus, dedication (and a bit of good old fashioned "Passion"), designing and implementing a robust information security consulting-centered solution is possible for any size business (and everybody needs it!).

"Cybersecurity" is NOT a "one size fits all" practice.  It begins with keeping your people well-informed, followed by well-defined processes and THEN considering what tools ("controls"), you should consider deploying. Let's address what risks and potential compromises that YOU are facing, and you will find out if (and where) the trouble is likely to come.

As the founder of the InfoSec SWAT Team, Drew was the technical product and program manager for the IT industry's first commercial Security Information and Event Management (SIEM) and the first Intrusion Detection (IDS) systems, and developed the industry's first hacker research program as part of organizing Symantec into a worldwide cybersecurity leader. 

 Throughout his 45-year career, Drew has been recognized for transformative leadership, improving risk frameworks, and driving innovation. He has led initiatives enhancing data visibility and encryption standards, partnered on successful ransomware recovery efforts, and implemented compliance solutions supporting $2 billion in client revenue, and served as the GRC Application Security and Compliance Officer for McDonald's worldwide, while leading Capgemini's GRC consulting practice for North America. 

US Navy Veteran and early Cybersecurity Industry GRC contributor 

Drew Blandford-Williams helped pioneer the IT Security industry's hacker research, GRC, and intrusion detection markets. Having been part of the Information Warfare sector of the Navy's Defense Information during the Carter and Reagan administrations, and in the 45 years since, Drew's passion lies in building, scaling, and operationalizing security, privacy, and compliance programs that drive growth while minimizing risk for enterprise organizations. One of the contributing authors of the original HIPAA law and in establishing the CVE as an industry standard.

Drew is a former faculty member, Mentor of the Year, and administrator at Utah Valley University, where he worked with faculty to establish the university's curricula in Cybersecurity studies. Drew also established cybersecurity programs at Southern Utah University, Taiwan Normal University, and with the Malaysian educational ministry ("MOSTI").

During his military service, Drew was part of the Navy's battle group that supported the US rescue efforts in Iran in Operation Eagle Claw in April 1980, and is a former member of the US Department of Health and Human Services (private sector) Advisory Committee on Cybersecurity.

Drew has designed coursework in information security consulting degrees at universities in the United States, Asia and the Middle East, he has appeared on MSNBC and CNN concerning cyber security consulting and information risk management, and often serves as an industry thought leader and team mentor.