Andrew’s approach to security is distinct and purposeful. After working for over two decades in the intelligence community, private industry, and startups, Andrew Amaro observed a recurring issue: most efforts were narrowly focused on singular aspects of the vast security industry. He desired the flexibility to tackle security holistically, addressing clients’ needs based on their specific threats, risks, and business practices. The primary goal is to enhance clients’ security without adding to their technological debt.
Drawing from his extensive experience, Andrew determined that the best approach is to view security from an attacker’s perspective, employing methods like TIBER (Threat Intelligence-Based Ethical Red Teaming) approach. This strategy allows clients to prioritize their most critical risks and threats first, while building a solid, scalable, and dynamic security foundation that evolves with their business growth.
Most recently, Andrew collaborated with other industry experts from the Intel and Cyber Security community to establish KlavanSecurity.com.
Klavan Security stands out by comprehensively combining all areas of security‚ “both physical and cyber” to protect their clients.
Andrew is a formally trained engineer with a distinguished background. He served as a former member of the Canadian Military and as a Senior Manager Technical Lead/Operative at The Canadian Security Intelligence Service (CSIS). During his tenure as a Technical Operations Agent and Senior Manager of the Counter Terrorism – Proliferation Tech Ops Group at CSIS, Andrew led and coordinated technical teams involved in data exploitation, physical access, online anonymity, and digital surveillance operations, supporting Canadian national security investigations at both the NHQ and the Ottawa Regional Office.
In 2019, Andrew transitioned to the private sector, specializing in dark web navigation, online privacy, risk management, and cyber attack incident response planning. His extensive experience in both physical and cyber security operations enables him to offer invaluable insights.
Andrew now leads Klavan Security as the Chief Security Officer and continues to provide essential vCISO services, guiding organizations through complex security challenges. He has also played a key role in helping startups achieve SOC2 Type I + Type II as well as ISO27001 certifications.
Klavan is dedicated to protecting clients through a comprehensive and dynamic approach to security, ensuring their highest risks and threats are addressed first while building a robust security foundation.