Andrew Rafla is a Principal in Deloitte & Touche LLP’s Cyber Risk Services Practice. He leads Deloitte Cyber’s Zero Trust and Breach and Attack Simulation offerings and has extensive experience in infrastructure and network security, regulatory compliance, cyber threat management, security operations, and security information and event management (SIEM). He primarily serves the financial services industry but has experience across multiple verticals including Federal (classified and unclassified), Retail, Hospitality, Power & Utilities, and Life Sciences. Mr. Rafla currently possesses Federal ANACI clearance, a CISSP certification, and a Master’s of Science in Information Assurance.