Andy Lewis is a Security Advisor for RiskRecon. He has held a variety of positions in a variety of organizations as a practitioner, manager, and executive. He co-founded the Denver OWASP chapter, the Denver Cloud Security Alliance, and SnowFROC. He founded the Boulder OWASP chapter. He currently travels around the world helping organizations improve their Third Party Risk Management capabilities and volunteers with the Denver FAIR Practitioners as time permits.
Join your peers for a candid, interactive discussion based on the annual survey results of the “Third-Party Security Risk Management Playbook.” The Playbook is the definitive study of third-party security risk management practices. Based on in-depth interviews of risk executives from 30 domestic and international firms, it reveals the real-world capabilities and practices employed to manage third-party cyber risk, distilled into 14 capabilities instantiated through 72 practices. The study sponsors from RiskRecon, collectively will: - Explore the Playbook’s framework of common, emerging, and pioneering capabilities - Learn from peers who can share their tactical and strategic practices - Benchmark your organization's adoption rates against those identified in the Playbook - Discuss how to use continuous surface risk assessment to support many of these key practices