Photo of Andrew Korty

Andrew Korty

University Information Security Officer

Contact Information

In his role as University Information Security Officer, Andrew manages a team of security engineers and analysts.  We are responsible for university-wide security standards administration, technical risk assessment programs, security reviews and consulting, technical security resources, and technical responses to security incidents.

Andrew started his career with IU in 1999 as a security engineer.  He is a SANS Certified Inutrusion Analyst (GCIA) and Certified Windows System Administrator (GCWN).  He obtained his Bachelor of Science in Physics from Purdue in 1996.

Selected Presentations

Selected Publications

  • “Cloud Services: Policy and Assessment” (with David Escalante), EDUCAUSE Review, June 2011.
  • SANS Security Essentials textbook, Volumes One and Two, 2003.  Topics include cryptography, host-based intrusion detection, vulnerability scanning, password assessment and management, sniffers, and Internet protocol packet analysis.

Professional and Service Activities

Recent Blog posts by this author

  • Attackers are targeting university faculty, staff, and students with a convincing but malicious e-mail message with the subject "Your Account May Have Been Compromised‏".
  • While the usefulness of cloud computing from a feature perspective is undeniable, leaders at higher education institutions are increasingly concerned about the hidden risks, with attendant costs, that are introduced when users share personal and institutional data with third-party providers.
    • Read the PSIA Blog
    • IU Notify
    • Crime Prevention Tips from IUPD
    • Request Assistance from Environmental Health and Safety
    • Secure Your Computer