The Chief Information Security Officer, campus Information Security Officers, and Cyber Risk and Compliance Committee work together to protect CU’s computing and information assets and oversee compliance with information-related privacy and security laws and regulations.

Chief Information Security Officer

David Capps serves as the University of Colorado Chief Information Security Officer (CISO) providing leadership and coordination for the information security program in partnership with the campuses and System Administration. “Each campus has unique needs. I see the CISO role as being a trusted partner — meaning first, we have to understand the needs of each campus and its priorities, how security impacts them, and how we can support them as a partner.”

Information Security Officers

Campus Information Security Officers (ISOs) serve in a variety of technical and non-technical roles. Some responsibilities include providing day-to-day program management; advising on IT security issues, evaluating risks to university information, and preparing, approving, and maintaining policies, procedures, and guidelines.

System Administration

Keith Lehigh

CU Boulder

Sarah Braun

CU Denver/Anschutz

Sean Clark


Charlie Wertz

Cyber Risk and Compliance Committee

The Cyber Risk and Compliance Committee serves to provide oversight and support of IT Security across all University of Colorado Campuses. See the current list of members.