Photo of Andrew Korty

Andrew Korty

University Information Security Officer

Contact Information

In his role as University Information Security Officer, Andrew manages a team of security engineers and analysts.  We are responsible for university-wide security standards administration, technical risk assessment programs, security reviews and consulting, technical security resources, and technical responses to security incidents.

Andrew started his career with IU in 1999 as a security engineer.  He is a SANS Certified Inutrusion Analyst (GCIA) and Certified Windows System Administrator (GCWN).  He obtained his Bachelor of Science in Physics from Purdue in 1996.

Selected Presentations

Selected Publications

  • “Cloud Services: Policy and Assessment” (with David Escalante), EDUCAUSE Review, June 2011.
  • SANS Security Essentials textbook, Volumes One and Two, 2003.  Topics include cryptography, host-based intrusion detection, vulnerability scanning, password assessment and management, sniffers, and Internet protocol packet analysis.

Professional and Service Activities

Recent Blog posts by this author

  • Attackers are targeting university faculty, staff, and students with a convincing but malicious e-mail message with the subject "Your Account May Have Been Compromised‏".
  • While the usefulness of cloud computing from a feature perspective is undeniable, leaders at higher education institutions are increasingly concerned about the hidden risks, with at