Special Ops Security || Company

Founder
888-R-U-OWNED
ext 1433

Chip Andrews (CISSP, MCDBA) is the head of Research and Development for Special Ops Security. Chip is the founder of the SQLSecurity.com website which focuses on Microsoft SQL Server security topics and issues. He has over 14 years of secure software development experience helping customers design, develop, deploy and maintain reliable and secure software. He regularly performs security assessments and penetration tests in a myriad of environments including Microsoft, UNIX, client/server applications, web-based applications, and multiple database platforms. Chip specializes in application- layer vulnerabilities and is adept at finding unintended access vectors into back-end systems using flaws in custom-developed application software; this usually allows unauthorized access even in well maintained systems.

Chip has been a primary and contributing author to several books including Special Ops: Network and Host Security for Microsoft, Oracle and UNIX (Syngress, ISBN 1931836698), SQL Server Security (Osborne, ISBN 0072225157), and Hacking Exposed: Windows 2000 (McGraw-Hill, ISBN 0072192623). He also served as a technical reviewer for the book SQL Server Security Distilled (Curlingstone, ISBN 1590591925). Chip has also authored articles for magazines such as Microsoft Certified Professional Magazine, SQL Server Magazine, and Dr. Dobb's Journal focusing on SQL Server security and software development issues. He is a prominent speaker at security conferences such as the Black Hat Briefings, where he provides expertise on Microsoft SQL Server security issues and secure application design.

Before founding Special Ops Security, Chip was a Software Security Architect for several software development companies and specialized in application penetration testing and security training for everyone involved in the development process from design to deployment. In addition, he incorporated secure development practices into the software development life cycle including threat modeling, security unit testing, checklists, code review and code generation. Prior to that, Chip was a Senior Consultant for Computer Associates in the eTrust security consulting division specializing in intrusion detection, access control, and security assessments. Chip holds a Bachelors degree in Applied Computer Science from Southern Polytechnic State University in Marietta, Georgia.