Dr. Steven Andrés, Ph.D.

  • steven.andres@sdsu.edu
  • Phone: 888-R-U-OWNED ext 111 (email preferred)
  • Office Hours: via Zoom video chat
  • Skype: @stevenandres (by appointment only)

Steven Andrés, Ph.D. is the founder of Special Ops Security and serves as its Managing Principal. He is a Certified Ethical Hacker (CEH) and earned the distinctions of Certified Information Systems Auditor (CISA) and the well-respected Certified Information Systems Security Professional (CISSP). As a three-time commercially successful published author and occasional freelance writer for PC World Magazine, his works on security best practices have reached 4.5 million print subscribers and were syndicated worldwide by IDG and its online affiliates to over 15 million. With extensive experience managing high-availability networks in the Entertainment, Health Care, Financial, and Higher Education industries, he is frequently invited to speak on secure architecture best practices and information security current events.

Before forming Special Ops Security, Dr. Andrés was the Director of Technical Operations for Foundstone, a vulnerability management and strategic security company acquired by McAfee (now Intel), where he created the award-winning Foundstone FS1000 Appliance, a widely-recognized security platform for rapid-deployment of security management solutions at dozens of Fortune 100 clients. While at Foundstone, he designed vulnerability assessment systems for the largest global ISP, co-invented innovative network security risk management methods (U.S. Patent 8,201,257), and led the team integrating real-world digital risk telemetry to enterprise systems at the world's largest software publisher.


Published Works

Certifications & Accolades

Over a decade of cybersecurity attack and defense has allowed Andrés to accumulate several accolades. In addition to the previously mentioned CEH, CISA, and CISSP, he has earned distinctions in Architecture (ISSAP), Management (ISSMP), and Risk (CRISC) as well as the INFOSEC Professional designation jointly-issued by the National Security Agency (NSA) and the Committee on National Security Systems (CNSS). He is listed as a subject-matter expert for the Information Assurance Technology Analysis Center (IATAC), chartered by the Department of Defense Technical Information Center (DTIC). Vendor-specific certifications include the Cisco Certified Network Professional (CCNP), Microsoft Certified Systems Engineer (MCSE), Cisco Certified Security Professional (CCSP), and Checkpoint Certified Security Engineer (CCSE).