Search within:

IT Standing Committee: Information Security

The Information Security Governance Standing Committee is charged annually by the IT Strategy & Investment Council and is empowered to inform strategy and decision rights for all University information security matters. This includes establishing roadmaps, shepherding initiatives, and producing clearly defined decision authority and escalation paths.

If you have questions about this Committee, contact the chair, Ed Carter:

Contact via Teams

Contact via Email


  • Provide guidance and oversight of University information security and risk management programs
  • Review and assure security initiatives effectively meet business objectives
  • Manage the risk acceptance process as outlined in University policy 91.006
  • Prioritize information security activities across the organization
  • Review, and approve information security policies & standards
  • Information security metrics review
  • Reconcile periodic conflicts
Ed Carter
Chief Information Security Officer and Senior Director, Information Security & Accessibility


  • Information Technology - Ed Carter (Chair)
  • Human Resources - Michael Courtney
  • Faculty - Hans Kruse
  • Senior Associate Dean - Brian McCarthy
  • Associate Dean - Shawn Ostermann
  • Regional Higher Education - Larry Tumblin
  • Associate Vice President of Finance - Julie Allison
  • Enterprise Risk Management and Insurance - Larry Wines
  • Research and Sponsored Programs - Susan Robb
  • Manager for Information Security and Access - Alicia Porter

Meeting Schedule

Meetings will take place approximately once per month with additional sessions scheduled as needed to accommodate time-sensitive discussions or to address demand. The three most recent meetings are listed below. Due to the sensitive nature of the items discussed in these meetings, only agendas will be posted to the public.

11/02/20232-3:00 p.m.November 2 agenda
08/03/20232-3:00 p.m.August 3 agenda
06/01/20232-3:00 p.m.June 1 agenda

View all agendas