Main Navigation

Permanent CISO named

After serving as interim since July, Corey Roach has been named the U's permanent chief information security officer effective Oct. 1.

UIT is pleased to announce that Corey Roach has been named the University of Utah’s permanent chief information security officer (CISO) effective Oct. 1, 2019. Roach has served as interim CISO since July.

The CISO reports to University of Utah Chief Information Officer Steve Hess and University of Utah Health Chief Information Officer James Turnbull, is a member of the UIT Leadership team and leads the UIT Information Security Office.

As CISO, Roach serves a key strategic role in university leadership, working with senior administration, academic leaders, and the campus community to steer a university-wide information security program.

“Corey has the respect of IT and security professionals across campus, and he has formed partnerships with the state and national IT security community,” Hess said. “He understands national and worldwide IT security, threats, issues, laws, standards, and policies. We are very pleased to have Corey lead our campus security staff and program.”

Turnbull added, “Corey has continued to demonstrate his knowledge, expertise, and ability to collaborate with teams across campus to provide a safe and secure cybersecurity environment at the University of Utah. We are fortunate that he has agreed to step into the CISO role on a permanent basis, which is a great development for both Corey and the university.”

Of his new position, Roach said, “I’m excited to become a permanent member of the University of Utah Health and campus leadership teams and to take on new challenges. It’s an exceptional opportunity to continue leading a group of extraordinarily dedicated and capable professionals.”

A Utah native, Roach has more than 18 years of information security experience in higher education, research, and health care. As Enterprise Security associate director in the Information Security Office (ISO) since 2014, he provided technical and strategic guidance as the university revised Information Security Policy (4-004), evaluated and acquired enterprise-class tools that significantly reduced cybersecurity threats, and coordinated post-incident forensics and impact analysis. Prior to this appointment, Roach’s IT and security roles at the U included senior data security analyst in ISO and IT manager for the Office of Residential Living.

Roach is a certified information systems security professional (CISSP) and certified information systems auditor (CISA).