Amy is a cybersecurity professional with over 12 years of cybersecurity and risk management experience. Amy is our National Leader for third-party risk management and is passionate about helping her clients build, implement, and assess or audit their third-party risk management programs. She aligns to industry leading practices as defined by the Shared Assessment Programs, Third Party Risk Association, and a variety of governance frameworks and compliance requirements. She has worked with many organizations to implement effective and efficient programs that ensure comprehensive risk management principles are applied across the supplier relationship lifecycle; planning, due diligence, contracting, ongoing monitoring, and termination.
Amy is also a passionate cybersecurity leader and trusted advisor. She helps clients navigate complex cybersecurity challenges, align to leading frameworks, and build sustainable risk-based security programs that protect critical assets and support business objectives.
Amy has authored or been featured in several external publications, including:
- “CMMC and supplier risk management requirements,” June 2025
- “Navigating the Cascading Impacts of Third-Party Risk and Dependencies,” September 2024
- “Healthcare organization resiliency in the face of CrowdStrike downtime,” September 2024
- “Are you creating cybersecurity vulnerabilities while restoring IT systems,” August 2024
- “Going Beyond Risk Management: 5 steps to increased visibility into your third-party risk,” March 2024