La MIA Famiglia

The Team and Influences Behind the Work

As the son of an Italian mother I have always found comfort in family. She showed me that there is nothing better than being surrounded (ideally over a lengthy dinner with vino rosso) by those that you love, trust, and with whom you feel an innate sense of camaraderie. 

Over the past twenty plus years I have been very lucky to have interacted with people whom I consider deeply skilled, knowledgeable, and of the highest integrity. As I have matured, so-to has my understanding of how fortunate I am to have this group of people around me.

So, I endeavor to bring that same feeling of safety and community to my work. At CRFQ, the way we make that manifest is through La Mia Fagmilia; My Family.  The incredible set of people comprising La Mia Famiglia have skill sets that range the entire spectrum of cyber risk, cyber security, physical security, compliance and privacy. They are vital components of CRFQ and I am blessed to be able to call upon them to assist with client engagements.

As a CRFQ customer you can feel confident that you are never exclusively engaging the expertise of any single person. You’re gaining the collective knowledge of centuries of experience through La Mia Famiglia which will assist us along our journey together. I am proud to  bring this amazing set of people to the table. They are friends and family who exhibit all the traits that I love. Every member of La Mia Fagmilia is passionate, community oriented, resilient, brilliant and unstoppable. You’ll also find that we’re hospitable to a fault and deeply proud.

I promise you couldn’t be in better hands. La Mia Famiglia will make sure that every engagement is both effective and so very very full of fun, laughter and buona vita. 

Mamma, questo è per te!

A black and white silver-nitrate printed image of a family in the 1910s. Two parents and three young children can be seen looking at the camera.

Meet La Mia Famiglia AND THEIR DOMAINS oF EXCELLENCE


  • Founder

    Andrew Shea is a cyber-security and risk-management consultant with over two decades of domain experience. In that time, Andrew has created one of the first cyber risk quantification models, was integral to the deployment of the first cyber insurance policies and pioneered creation of the concept of defensible regulatory disclosure including the development of "CFO-Proof" cyber-risk analysis.

    CRFQ is focused on assisting enterprise organizations with the implementation and ongoing development of cyber risk financial quantification capabilities. CRFQ is a contributing member to the FAIR institute and works actively with the FAIR institute standards team. Andrew is also secretary to the newly formed Great Lakes FAIR user group. In his spare time Andrew is an avid painter and conversationalist.


  • Scott McCoy was born in Kodiak Alaska and raised in Bemidji Minnesota. After graduating High School, he joined the Army as an Explosive Ordnance Disposal technician. While getting his bachelor’s degree in Russian Area studies, he served in the Army Reserve as an Interrogator/Russian Linguist and a Psychological Operations Specialist.

    Scott started his professional career as Director of Physical Security in health care in 1996. He moved to the Utility sector in 1998 when he joined NSP (Xcel Energy) and by 2002 was the youngest Director of Security at an investor-owned Utility at age 35. Two years later he created Xcel Energy’s first IT Security department. In 2007 he became the CSO at Alliant Tech Systems, a Defense Industry company and create their first IT Security department. In 2012 he became the VP of Enterprise Security at Thomson Reuters.

    Scott received his master’s degree in management in 2001. He holds the CPP and CISSP certifications. Scott has been sharing his knowledge and experience as an adjunct instructor since 2008, teaching cyber security and management course for master’s degree programs. Scott’s love of learning led him to set a goal to learn a new skill every year since his 39th birthday. He has learned to write fiction, blacksmithing, canning, knife and sheath making to name only a few.

    Scott is currently back with Xcel Energy since April, 2021 as Director of the Enterprise Command Center, a converged monitoring and incident response center responsible for card access, physical security alarms, UL listed central station, cyber security detection and investigation, wildfire, and other environmental monitoring


  • Chris Tyrell has led the architecture, implementation and overseen ongoing monitoring for some of the world’s largest endpoint, server and DLP implementations.

  • Director, Business Development

    Teaser Sweeney is new to CRQ but, no stranger to helping customers solve technical problems. In his tenure, he has brought a number of foundational insights to CRFQ and our customers. His business savvy, combined with his unending energy and affability encourages authentic discussions and enables the openness necessary to truly address business problems.