Profiles search
Andrew Schreiber
Manager, Cybersecurity Incident Response at Children's Mercy Hospital
Overland Park, KS, United States
Details
Education:
Network Intrusion Response Training (NITRO)
Network Intrusions
National Computer Forensics Institute (United States Secret Service)
2014 : 2014
Basic Computer Evidence Recovery Training (BCERT)
Computer Forensics
National Computer Forensics Institute (United States Secret Service)
2010 : 2010
72nd Class
Law Enforcement
Johnson County Regional Police Academy
2004 : 2004
Bachelor of Arts (B.A.)
Psychology
Wichita State University
1997 : 2000
Psychology
Pepperdine University
1995 : 1996
Network Intrusions
National Computer Forensics Institute (United States Secret Service)
2014 : 2014
Basic Computer Evidence Recovery Training (BCERT)
Computer Forensics
National Computer Forensics Institute (United States Secret Service)
2010 : 2010
72nd Class
Law Enforcement
Johnson County Regional Police Academy
2004 : 2004
Bachelor of Arts (B.A.)
Psychology
Wichita State University
1997 : 2000
Psychology
Pepperdine University
1995 : 1996
Experience:
• Manage and lead internal cybersecurity response efforts to highly technical and sensitive investigations
• Act as the Incident Manager for cybersecurity incident response investigations and coordinate cross-functional teams
• Lead all cybersecurity investigations through identification, containment, eradication, recovery, and post incident analysis
• Effectively communicate incident details to leadership and stakeholders in both technical and non-technical roles
• Assist in prioritization of incidents based on overall risk to the organization
• Identify security gaps in existing processes and propose, create, and implement solutions to mature the overall security posture
2017 : Present
Children's Mercy Hospital
Manager, Cybersecurity Incident Response
• Provide comprehensive computer forensic investigations : Acquire, collect, document, and preserve evidence from various forms of electronic media and equipment.
• Identify, document and prepare reports on relevant findings.
• Lead Cyber-Response teams to conduct highly-confidential cyber-response investigations
• Primary first responder for cyber-security incidents
• Provide education to existing staff on the emerging trends of security operations methodology, information security concepts, security analysis and monitoring, incident response methodologies, and investigative tools and techniques
• Assist with the architecture and design of security controls, security monitoring and analysis technologies/processes, and cyber-response technologies/processes
• Manage issues resulting from investigation, work collaboratively with technical and business leads to follow up accordingly to security incident management procedures and processes, and assist in development and resolution of daily incident reports.
• Participate in the improvement and development of process/procedure manuals and documentation
2015 : 2017
H&R Block
Sr. Cyber Forensic Investigator
Perform Forensic Computer and Mobile Device examinations for the Police Department. Collect and handle evidence as well as perform various laboratory examinations based on industry best practices using forensic tools such as Forensic Took Kit (FTK), EnCase, NetAnalysis, Internet Evidence Finder (IEF), Cellebrite Universal Forensic Extraction Device (UFED) as well as many others. Spent 5 years assigned to the United States Secret Service Electronic Crimes Task Force (ECTF) as well as the Financial Crimes Task Force (FCTF).
Conduct and investigate criminal complaints with an emphasis on financial crimes. Interview suspects, victims, and witnesses and prepare written reports. Analyze and conduct audits on bank statements, bill expenditures, invoices, credit card statements, and other financial records that relate to financial criminal investigations. Assist other federal, state, and local law enforcement agencies with financial crime investigations and digital forensics support. Write and execute search warrants, probable cause warrants, and subpoenas for criminal investigations. Testify in state and federal court on criminal cases involving the examination of digital evidence and the associated investigations.
Function as the system administrator for the OPPD ECTF Computer Lab which requires a strong understanding in network architecture, information security, evidence management, and hardware/software troubleshooting.
2009 : 2015
Overland Park (KS) Police Department
Detective/ Digital Forensic Examiner
Provide law enforcement and public safety services to the community to include enforcement of criminal statutes and ordinances, traffic enforcement, crime prevention, patrol activity, accident investigation, resolution of domestic and other disturbances, prosecution support and non-criminal public safety services.
2003 : 2009
Overland Park (KS) Police Department
Patrol Officer
Carried out coaching assignments during daily work-outs, practices and scheduled events. Enforced team rules. Maintained statistics. Monitored assigned student athletes performance and employed specific coaching modalities to meet needs. Recruiting – recruited student athletes; assisted with departmental recruiting activities and carried out scouting assignments. Financial and general administration – assisted in budget planning. Assisted with the coordination of team travel plans. Worked with the sports administrator to adhere to practice and competition schedules. Physical conditioning – consulted with the trainers and team physicians in monitoring the well being of student athletes. Other duties as assigned by the head coach.
2000 : 2003
Newman University
Assistant Baseball Coach
• Act as the Incident Manager for cybersecurity incident response investigations and coordinate cross-functional teams
• Lead all cybersecurity investigations through identification, containment, eradication, recovery, and post incident analysis
• Effectively communicate incident details to leadership and stakeholders in both technical and non-technical roles
• Assist in prioritization of incidents based on overall risk to the organization
• Identify security gaps in existing processes and propose, create, and implement solutions to mature the overall security posture
2017 : Present
Children's Mercy Hospital
Manager, Cybersecurity Incident Response
• Provide comprehensive computer forensic investigations : Acquire, collect, document, and preserve evidence from various forms of electronic media and equipment.
• Identify, document and prepare reports on relevant findings.
• Lead Cyber-Response teams to conduct highly-confidential cyber-response investigations
• Primary first responder for cyber-security incidents
• Provide education to existing staff on the emerging trends of security operations methodology, information security concepts, security analysis and monitoring, incident response methodologies, and investigative tools and techniques
• Assist with the architecture and design of security controls, security monitoring and analysis technologies/processes, and cyber-response technologies/processes
• Manage issues resulting from investigation, work collaboratively with technical and business leads to follow up accordingly to security incident management procedures and processes, and assist in development and resolution of daily incident reports.
• Participate in the improvement and development of process/procedure manuals and documentation
2015 : 2017
H&R Block
Sr. Cyber Forensic Investigator
Perform Forensic Computer and Mobile Device examinations for the Police Department. Collect and handle evidence as well as perform various laboratory examinations based on industry best practices using forensic tools such as Forensic Took Kit (FTK), EnCase, NetAnalysis, Internet Evidence Finder (IEF), Cellebrite Universal Forensic Extraction Device (UFED) as well as many others. Spent 5 years assigned to the United States Secret Service Electronic Crimes Task Force (ECTF) as well as the Financial Crimes Task Force (FCTF).
Conduct and investigate criminal complaints with an emphasis on financial crimes. Interview suspects, victims, and witnesses and prepare written reports. Analyze and conduct audits on bank statements, bill expenditures, invoices, credit card statements, and other financial records that relate to financial criminal investigations. Assist other federal, state, and local law enforcement agencies with financial crime investigations and digital forensics support. Write and execute search warrants, probable cause warrants, and subpoenas for criminal investigations. Testify in state and federal court on criminal cases involving the examination of digital evidence and the associated investigations.
Function as the system administrator for the OPPD ECTF Computer Lab which requires a strong understanding in network architecture, information security, evidence management, and hardware/software troubleshooting.
2009 : 2015
Overland Park (KS) Police Department
Detective/ Digital Forensic Examiner
Provide law enforcement and public safety services to the community to include enforcement of criminal statutes and ordinances, traffic enforcement, crime prevention, patrol activity, accident investigation, resolution of domestic and other disturbances, prosecution support and non-criminal public safety services.
2003 : 2009
Overland Park (KS) Police Department
Patrol Officer
Carried out coaching assignments during daily work-outs, practices and scheduled events. Enforced team rules. Maintained statistics. Monitored assigned student athletes performance and employed specific coaching modalities to meet needs. Recruiting – recruited student athletes; assisted with departmental recruiting activities and carried out scouting assignments. Financial and general administration – assisted in budget planning. Assisted with the coordination of team travel plans. Worked with the sports administrator to adhere to practice and competition schedules. Physical conditioning – consulted with the trainers and team physicians in monitoring the well being of student athletes. Other duties as assigned by the head coach.
2000 : 2003
Newman University
Assistant Baseball Coach
Company:
Children's Mercy Hospital
Years of Experience:
23
Skills
AccessData Certified Examiner, Cellebrite, Computer Forensics, Criminal Investigations, Criminal Law, Cybersecurity Incident Management, Cybersecurity Incident Response, Digital Forensics, Electronic Evidence, EnCase, Field Training Officer, Financial Crimes Investigations, Foresnics, FTK, Internet Investigations, Mobile Forensics, Police, Police Officers, PRTK, Public Safety, Security Information and Event Management (SIEM), Security Orchestration and Automation Response
Profile Photo
