1. Home
  2. About
  3. ND IT Stewardship
  4. Security, Risk & Compliance

Security, Risk & Compliance

Membership

Chair: Leilani Lauger, Chief Information Security Officer
IT Lead: Paul Drake, Risk Program Manager
Stewardship Portfolio Partner: Matt Smith, Enterprise Portfolio Management

Standing Members:
• AVP and Chief Auditor, Audit and Advisory Services (Roger Mahoney)
• Senior Dir. Procurement Services (Gilberto Carles Barraza)
• Assoc. General Counsel (Tim Flanagan)
• Regulated Research Program Dir. Office of Research (Scott Thompson)
• Dir. Mendoza IT, Distributed IT (Chris Fruehwirth)
• Sr. Assoc. Dir. Emergency Management (Tracy Skibins)
• Dir. Treasury Services (Adam ElBenni)
• Dir. Client Experience, OIT Support (Ryan Palmer)
• Vice President, Information Technology and Chief Information Officer (Jane Livingston)
• Dir. Athletics IT (Nina Holdread)

Ad hoc Members: Meeting participation may increase to include representative leadership from other committees and IT leadership and/or project executive sponsors as advising attendees depending on the topics discussed.

Charter and Objective

The Security, Risk, and Compliance Committee charter
Objective: In order to meet the technology needs at Notre Dame and align them with each other and the overall University strategy, the Security, Risk, and Compliance Committee ensures alignment of IT security policy and practice with the University’s mission. The Committee’s work includes risk prioritization, developing policy and standards, communicating policy and taking input from the community, and building support for activities that address cyber risk.

Meeting Schedule

The Security, Risk, and Compliance Committee meets in January, April, July, and October.

Key Initiatives

Quarterly Updates

January - March 2024

  • Presented new developments in the information security roadmap in response to shifting threat landscape.
  • Reviewed the committee's consensus on top campus units to work within risk assessment.
  • Shared current program work around third party risk, security awareness and incident response.
  • Discussed this stewardship committee's scope with new university initiatives.

October - December 2023

  • Shared current trends and recent incidents related to Security, Risk and Compliance.
  • Reviewed current roadmap for Security, Risk and Compliance.
  • Shared new campus unit risk assessment process and discussed prioritization.