Kris Winkler has over 20 years of cybersecurity leadership and management experience across multiple industries including consumer, health care, technology, telecommunications, consulting and legal services, financial institutions, insurance, and the public sector. Kris is a cybersecurity expert and core member of BCG Platinion. Platinion is Boston Consulting Group's division focused on the development, implementation, and enablement of business-critical IT architecture and digital solutions. It is part of Tech & Digital Advantage (TDA), the firm's newly formed functional practice that orchestrates, integrates, and enables technology .

Kris has extensive technical experience in cybersecurity governance and strategy, frameworks and standards, and cyber supply chain risk management. Her present primary focus is consumer products companies and the public sector. She has a deep knowledge of the National Institute of Standards and Technology (NIST) security frameworks and requirements, and co-authored NIST SP 800-161 Rev. 1, Cybersecurity Supply Chain Risk Management Practices for Systems and Organizations in 2022, and NIST IR 8179, Criticality Analysis Process Model: Helping Organizations Decide Which Assets Need to Be Secured First in 2018.

Before coming to the firm, Kris spearheaded two Common Criteria Testing Laboratories (CCTLs).