Greater Bend Area
I'm an information security and AI professional who thrives on solving complex problems, building strong teams, and bringing structure to chaos. Over the past two decades, I've built and led security programs that span offensive operations, application security, cloud architecture, and the emerging world of AI security. I started in tech young and was self-taught, curious, and eager to understand how systems work. That drive led me through roles where I built red teams, launched cloud security programs, and turned small consulting groups into thriving practices. At GuidePoint Security, I helped grow the company from its initial stages to hundreds of millions in annual revenue while personally leading a 30-person multi-practice division. I'm at my best when translating between technical detail and business strategy, bridging the gap between engineers, executives, and clients. Whether it's optimizing cloud defenses, integrating AI risk management, or rebuilding a struggling program, I focus on clarity, efficiency, and measurable outcomes. Today, I'm especially focused on AI security: protecting large language model environments and helping organizations adopt new technology safely. It's the next evolution of what's always driven my career: adapt fast, learn deeply, and build systems that last. If your organization needs a professional who can blend vision with execution and bring order to complexity, let's connect.
Andrew launched Lucid Mindworks to help organizations navigate the fast-moving intersection of AI, automation, and cybersecurity. Through this practice, he advises local businesses on high-value AI use cases, delivers practical training on prompt engineering and Copilot adoption, and builds agentic workflows and chatbot solutions that streamline operations. Andrew also performs targeted application and cloud security assessments, helping organizations strengthen their architecture while adopting new technology responsibly. His work blends hands-on technical skill with strategic governance, giving clients clarity, confidence, and secure pathways to modern AI-enabled capabilities.
Andrew was hired to rebuild CyberOne's offensive security practice after its spin-off from Critical Start. The role required restoring structure, direction, and client trust. He created a comprehensive portfolio of 19 service offerings spanning penetration testing, red teaming, and application security, complete with methodologies, tooling, and delivery frameworks. Partnering with sales leadership, he redefined pricing, refined go-to-market messaging, and reengaged major clients. The result was a unified, motivated team and a stronger foundation for long-term growth in a highly competitive market.
Andrew joined NCC Group to turn around a struggling $8M annual cloud and application security revenue stream that had lost client confidence and internal cohesion. He quickly assessed the situation through direct client and team feedback, identified pain points, and implemented a streamlined delivery model that improved communication, morale, and output. Within six weeks, client satisfaction scores rose dramatically, and the program stabilized into one of the company’s most efficient operations. The turnaround reinforced Andrew’s strength as a security leader who brings clarity and results to complex consulting programs.
Andrew was recruited to build a red team program from the ground up within one of the nation’s largest critical infrastructure providers. He developed job descriptions, defined methodologies, and designed attack simulations to strengthen the company’s internal security posture. Despite facing significant operational constraints that limited early execution, Andrew laid the groundwork for a sustainable offensive security program and contributed valuable insight into the complexities of securing large, highly regulated environments. The experience deepened his understanding of enterprise-scale resilience and security governance within critical infrastructure.