Security and Privacy Enterprise Architecture
The IT Security and Compliance Enterprise Architect works through the State IT Governance process to implement security policies that provide adequate protection to the State and its stakeholders. This architect assists agencies in understanding of and adherence to compliance requirements in areas such as FERPA, NIST, ISO, PCI, HIPAA,  and Sarbanes-Oxley. Additionally, the security enterprise architect leads the PCI compliance efforts for the State, and represents the state when dealing the state's PCI vendor. Significant effort is focused on developing new network security strategies, such as security scans for compliance efforts and the facilitation of penetration testing. The IT Security and Compliance Enterprise Architect also works with and organizes IT security investigations involving state agencies related enterprise systems.




Contact Information
Office 307.777.5101