Andrew Alaniz | SpeakerHub

Personal Details

Bio

I am a Director of Technical Architecture in the US for BBVA. I lead multiple teams including security architecture, cloud governance, and private cloud security operations. In this role, I am developing and establishing the enterprise security architecture framework. This means using my experience as a consultant and security architect to work with business leaders, executives and engineers to integrate security into processes throughout the bank.

Over my career I have reviewed, assessed and consulted with hundreds of organizations and have learned a great deal about how best to establish information security programs. I enjoy my job a lot, and as such I enjoy sharing and explaining information security to all types of audiences. Security must be an enabler of business, and this requires understanding many different aspects of an organization besides just technology. It also requires understanding about what problems technology can and cannot resolve.

Through this I have numerous local and regional speaking engagements including:

National Cyber Summit 2018 - Huntsville, AL

North Alabama Healthcare Coalition - Alabama

Central Alabama ISSA - Instructor for CISSP Training - Birmingham, AL

Central Alabama ISSA Chapter presentations - Birmingham, AL

Bsides Huntsville - Huntsville, AL

Current position (1)

Directory of Technical Architecture

BBVA

Presentations

Presentations (3)

Assumed Breach - A Practical Approach

What is assumed breach and why is it important? In this presentation, I will walk the audience through what this means and how it should define how both security and IT should architect their systems. When we assume certain trust levels of different systems it not only allows us to better define controls and detection mechanisms, but it also allows us to respond to incidents more swiftly. Today's perimeter is no longer a border firewall, its every person's cell phone, home router, tablet and refrigerator, each one with varying degrees of risk.

CAISSA - CISSP Workshop

I have been a repeat instructor for Central Alabama ISSA's CISSP workshop teaching on topics such as:
Security Vulnerabilities, Threats, and Countermeasures
Security Assessment and Testing
Physical Security
Principles of Security Models, Design, and Capabilities

CyberNow 2020 - A Journey to the Cloud

In this video, I talk about some of the questions companies should be asking and the conversations they should be having as they make their journey into 'the cloud.'

Past talks (2)

Assumed Breach - A Practical Approach

National Cyber Summit 2018

Huntsville, AL

June 6, 2018

A Journey to the Cloud

CyberNow 2020

Birmingham, AL

September 3, 2020