Andrew Clinton

Andrew Clinton has been working in IT and Information Security for more than 15 years. He’s held a wide range of roles from engineering to senior leadership across a wide range of focuses such as defensive security engineering, penetration testing, and compliance. He has a bizarre appreciation for project management. Outside of work he spends unreasonable amounts of money on complex hobbies he doesn’t have time for. He is currently Director of Cyber Security at Aveanna Healthcare where he oversees security engineering, incident response, and internal penetration testing.


Spilling the Beans: How to Spot a Bad Pentest
Qasim Ijaz, Andrew Clinton

Ever wondered what the magic is behind a penetration test? Did you receive a pentest report that does not line up with your expectations? Do you want to get more out of your consulting partners or want to know the secret to landing that job at a consulting firm? Come join us as we spill the beans and disclose how the (halal) sausage is made. We will discuss pentesting from the perspective of both the client and the consultant. If you're looking to land a job at a consultancy, this talk is for you too. As we peel the curtain and talk through real-world examples, everyone walks out with the magic sauce.

Room 401 - "Re-Engage" track