Andrew Jamieson has been working in the security of embedded systems for over 20 years, spending half of his time making devices and the other half breaking devices. During this time he has worked with many different security evaluation methods, such as Common Criteria, FIPS140-2, ISO13491, and PCI PTS. Andrew regularly interfaces and works with device manufacturers from around the world, and provides input to new security evaluation methodologies. Andrew works in the ‘Innovation’ team of Underwriters Laboratories Transaction Security division, having previously managed the Device, Audit and Standards area. He holds a bachelors degree in Electrical Engineering, and a Masters Degree in Information Security. He’s been known to call himself a security Oompa Loompa, but has yet to convince enough people to get that printed on his business card.