Amy braswell
Amy Braswell
Braswell serves as Deputy CISO for TIAA and leads the enterprise
Cyber Third Party and Subsidiary Risk Assessments, Cloud Security,
DevSecOps, and Vulnerability and Configuration Management
teams. The teams are responsible for implementing a consistent
cybersecurity assessment approach for third parties and
subsidiaries, rating and assessing infrastructure and application
vulnerabilities, and ensuring that sound cybersecurity practices are
integrated into the software development lifecycle. Additionally, the
Business Information Security Officers (BISOs) report to Amy. The
BISOs are responsible for ensuring business perspective is
considered for security initiatives and providing security expertise
and guidance to ensure that cybersecurity is embedded by design
into business initiatives. The BISOs partner with their respective
business areas to ensure that cybersecurity is embedded by design
into business initiatives. Prior to Deputy CISO, Braswell was the
TIAA Bank Chief Information Security Officer.
Background
Previously, Braswell led Information and Cybersecurity Control at
Wells Fargo, where she oversaw the first line of defense risk
management team. She also managed enterprise information
security policies and risk assessments, implemented enterprise
governance routines, and aligned daily operations with strong risk
management practices.
Braswell also worked for Bank of America in information security, risk
management, compliance and consumer business roles for 20 years.
She served as the governance, risk and compliance executive for
Global Information Security, leading a global team of more than 100.
Braswell implemented risk management practices across the
technology organization, managed data loss prevention and insider
threat programs, and provided operational risk guidance for the
consumer business. She also taught a graduate course in computer
forensics at the University of North Carolina at Charlotte.
Amy earned a bachelor’s degree in computer science from North
Carolina State University.