Patrick Butterfield

Patrick Butterfield is a Lead Analyst and Third-Party Risk Management evangelist in the Lowe’s
Information Security Group. He is responsible for identifying and reducing risks within Lowe’s extensive
international network of over 100,000 vendors, suppliers, and business partners. By identifying risks
before a vendor is onboarded, and by continuously monitoring these vendors for emerging risks
throughout their lifecycle, Patrick’s team can avoid potential service interruption while ensuring the
protection of Lowe’s customers, data, and brand. Patrick believes that proactive risk avoidance is
essential to a successful third-party risk management program and emphasizes continued vendor cyber
security education and awareness.

Patrick has been with Lowe’s Companies for almost 18 years and has led teams in IT Engineering, Master
Data Management, and Information Security. He is currently working to develop the “Lowe’s TPRM
v2.0” program focusing on automation, artificial intelligence, and predictive risk analysis.

Patrick is a veteran of the United States Navy and is a Certified Third-Party Risk Assessor. When he is not
thinking about cyber risk, he enjoys spending time on his pontoon boat or walking his dog Sammy
around beautiful Lake Norman, NC.