Deadline for required cybersecurity training is Dec. 20 The Division of Information Technology encourages all faculty and staff to log in to Litmos and confirm the training has been completed prior to the deadline. Log in to Litmos

Cybersecurity and Privacy

Units within the Cybersecurity and Privacy department provide services to bolster the university’s security posture and manage identity access.

Leadership

Steve Lovaas, Chief Information Security Officer
Steve Lovaas has worked for Colorado State University since 2005, joining the Ram family as the joint networking and security manager. Currently, he serves as the Chief Information Security Officer for both CSU’s Fort Collins presence and the CSU System. He heads the department of Cybersecurity and Privacy, which includes responsibility for security policy, identity and access management, security risk and compliance, security training and awareness, incident response coordination, and the cybersecurity internship program.

A published author and international speaker, Steve brings a broad perspective to bear on the problems of cybersecurity. His educational background includes music, chemistry, marine science, philosophy, computer networking, and information assurance — most recently engaging in PhD-level studies at CSU in Public Communication and Technology. His organizational leadership experience includes board president positions for Opera Fort Collins and Colorado Science Olympiad. Steve has completed leadership training with EDUCAUSE and MOR Associates, and he is currently the chair-elect for the Colorado Higher Education Computing Organization.

Contact: [email protected]

Units

Leadership: Alex Khramov, [email protected]

Cybersecurity Services

The Cybersecurity Services team provides consistent and best-practice security and identity management services to the CSU Fort Collins community and the CSU System.

Identity and Access Management

The Identity and Access Management team develops, administers, and maintains critical identity and access services for people and systems and supports IAM integration solutions and processes.

User Awareness and Training

The User Awareness and Training team provides cybersecurity awareness and security education, develops documentation and resources, and engages with campus partners to provide engaging and meaningful training opportunities.

Incident Response

The Incident Response team develops incident response playbooks, monitors campus systems for vulnerabilities, and coordinates the cybersecurity internship program.

Security Governance, Risk and Compliance

The Security Governance, Risk and Compliance team leads and manages campus efforts to secure data, reduce risk, and ensure compliance with security standards by ensuring appropriate handling of data and documenting processes and procedures to manage sensitive information.