IT Standing Committee: Information Security
The Information Security Governance Standing Committee is charged annually by the IT Strategy & Investment Council and is empowered to inform strategy and decision rights for all University information security matters. This includes establishing roadmaps, shepherding initiatives, and producing clearly defined decision authority and escalation paths.
If you have questions about this Committee, contact the chair, Ed Carter:
Objectives
- Provide guidance and oversight of University information security and risk management programs
- Review and assure security initiatives effectively meet business objectives
- Manage the risk acceptance process as outlined in University policy 91.006
- Prioritize information security activities across the organization
- Review, and approve information security policies & standards
- Information security metrics review
- Reconcile periodic conflicts
Chief Information Security Officer and Senior Director, Information Security & Accessibility
Membership
- Information Technology - Ed Carter (Chair)
- Human Resources - Michael Courtney
- Faculty - Hans Kruse
- Senior Associate Dean - Brian McCarthy
- Associate Dean - Shawn Ostermann
- Regional Higher Education - Larry Tumblin
- Associate Vice President of Finance - Julie Allison
- Enterprise Risk Management and Insurance - Larry Wines
- Research and Sponsored Programs - Susan Robb
- Manager for Information Security and Access - Alicia Porter
Meeting Schedule
Meetings will take place approximately once per month with additional sessions scheduled as needed to accommodate time-sensitive discussions or to address demand. The three most recent meetings are listed below. Due to the sensitive nature of the items discussed in these meetings, only agendas will be posted to the public.
| Date | Time | Agenda |
|---|---|---|
| 11/02/2023 | 2-3:00 p.m. | November 2 agenda |
| 08/03/2023 | 2-3:00 p.m. | August 3 agenda |
| 06/01/2023 | 2-3:00 p.m. | June 1 agenda |