Biography
With over 10 years of experience in security, compliance, and third-party risk management, I’ve built a career rooted in technical depth, cross-functional collaboration, and global perspective. I began my career at one of the Big 4 accounting firms, where I focused on IT audit initiatives. From there, I joined a large tech company in San Francisco, where I held several roles in security engineering, compliance, and vendor audit, often traveling across the world to perform onsite critical vendor assessments. I currently serve as the TPRM Lead at Zoom, where I’ve spent the past four years building, scaling, and maturing our TPRM program. Over the course of my career, I’ve led multiple TPRM tool implementations, championed automation efforts, established and led offshore teams, and executed high-impact vendor assessments. I am also a proud holder of several industry certifications, including CISSP (Certified Information Systems Security Professional), CISA (Certified Information Systems Auditor), and CEH (Certified Ethical Hacker).
Leadership Characteristics
My leadership style is rooted in empathy, listening, and understanding. I prioritize strong stakeholder relationships, which are essential in a cross-functional program like TPRM. I place a high value on accountability – both for myself and those I work with – because it builds trust and enables continuous growth. Mentorship is also deeply important to me, as I’ve been fortunate to have incredible mentors throughout my career. I’m committed to paying that forward, particularly by supporting and uplifting women in the field.
Leadership Challenges
One of the most significant challenges I’ve faced in my career was adapting my team’s processes during the onset of the COVID-19 pandemic. With travel restrictions in place, traditional onsite assessments were no longer possible. We quickly pivoted to virtual assessments to ensure we could continue meeting our audit, regulatory, and customer obligations. Around the same time, I joined Zoom as it was experiencing rapid growth due to the pandemic. That growth brought heightened scrutiny around security and compliance, requiring us to ensure consistent risk management across a growing vendor and customer footprint. More recently, the rise of AI has introduced new complexities in TPRM. I’ve been focused on establishing governance frameworks that allow us to leverage third-party AI capabilities responsibly while prioritizing security, compliance, and ethical considerations.
Key Take-a-ways
My favorite aspect of working in TPRM is that the landscape is constantly evolving. There are always new vendors, emerging risks, shifting regulations, and opportunities to innovate through automation. My advice to others in the field is to stay curious and adaptable. Also remember that in a cross-functional role like TPRM, building strong relationships across the organization is just as important as understanding the technical aspects of security and risk.
Fun Fact
Fitness and staying active is important to me! I’m very involved in my local gym community and even run their social media accounts, which is a fun, creative outlet that keeps me energized and connected outside of my professional role.