Andrew Heighington
Andrew Heighington
Information Security and CyberSecurity Expert
Andrew Heighington is the Chief Security Officer at EarthCam, a construction technology company. He has 10+ years of experience in Information and Cybersecurity. Previously, he served as an information security leader at Bank of America, Visit.org and JPMorgan Chase. He also served as Executive Director at the Office of the Principal Cyber Advisor at the US Department of Defense.
Meeting the Security Requirements of Enterprise and Other Security-Sensitive Buyers
Andrew Heighington is the Chief Information Security Officer at EarthCam. He has 15+ years of experience in Information Security and Cybersecurity. Previously, he served as an information security leader at Bank of America, JPMorgan Chase, and the Department of Defense. He was named as one of the 50 CISOs to Watch in 2024 by Lacework and has been featured in the Wall Street Journal. In this guide, he walks through meeting the security requirements of enterprise, healthcare, and government buyers—including the compliance standards they’ll use and how to become compliant.

Areas of Expertise

1.
Building your cybersecurity program and strategy Andrew can advise companies on the design and orchestration of a comprehensive cybersecurity program. He can help companies improve their cloud security practices and implement application, operations, and business controls.
2.
Cybersecurity employee awareness training Andrew can provide trainings to organizations and their employees on day-to-day cybersecurity best practices. He can teach employees proper password management practices, phishing awareness, and data protection.
3.
Advisory on SOC 2 readiness Andrew can advise companies on SOC 2 readiness and accelerate their readiness. He can help companies identify the gaps in their security programs pre-report and help them work towards remediation.
4.
Navigating security requirements in the sales process Andrew can help companies meet and negotiate the security requirements of enterprise or regulated buyers. He can help companies proactively implement necessary measures and compliance standards, and with the negotiation of security clauses in engagement contracts.
5.
Selecting security tooling The cybersecurity vendor marketplace can be overwhelming. Andrew can help companies maximize the bang for their buck in security spend by choosing industry leading tools that are right-sized for their organization and risk profile.

Want free guides?

We feature guides every month in our newsletter

Newsletter Sign Up