Information Security Governance
Governance Committee Formation and Relevance
The best way to strengthen information security is to create a framework for IT governance. Effective security governance is managed as an organizational-wide issue that is planned, managed and measured in all areas throughout the organization. In IT Governance, leaders are accountable for and are committed to providing adequate resources to information security. Our goal is creating and following a core set of principles to guide the framework for information security governance.
From USG IT Handbook Audit Expectation:
188.8.131.52 - Through interviews and process review, evaluate the adequacy and completeness of the information security plan and the information security governance structure within the context of the institution's strategic priorities and goals.
- Chief Information Officer (CIO) - Abraham George - The CIO is responsible for the overall management, direction and security of the University's information assets
- Chief Information Security Officer (CISO) – Loretta Marshall - The Interim CISO has delegated authority and is responsible for planning, developing and deploying the University's Security Program
- Human Resources Director – Carole Clerie
- Director of Enterprise Risk Management – Ric Barrow
- General Counsel – Craig Burgess
- Assistant Vice President Business and Finance – Frank Hardymon Jr.
- Director CSU Cybersecurity Center – Michael Barker
- Department Chair / Professor Computer Science – Wayne Summers
- Director of Enterprise Software Services UITS – Valerie Alexander
- Desktop Support Services Manager, UITS – David Williams
- Executive Director of Operations and Infrastructure, UITS – Casey Hergett
- Assistant Dean of Students – Dana Larkin
- Chief of Police – Mark Lott