Protecting Oregon State's digital assets while maintaining an agile IT ecosystem.

OSU’s network contains data that, should it fall into the wrong hands, could cause harm to individuals within our community. The Office of Information Security (OIS) is your contact for questions about OSU's Information Security Policies and Procedures.

Our mission is to raise OSU's standards and practices for secure computing.

In order to protect university data, OIS is tasked with identifying threats to that data, such as hackers, the malicious software they use, and to assist IT units in taking steps to protect it. OIS is also committed to tracking down the source of threats of violence against members of our community.


OIS Services

The Office of Information Security coordinates with academic and administrative units to develop policy, benchmark and assess our level of risk, and educate and inform our community on best practices. OIS currently offers seven unique services that help these units maximize informational security.

 Security Tools Used by OIS

The Office of Information Security uses a variety of tools and multiple sources of data to perform these tasks. We are very much aware that we have the potential to impact the privacy that is an important part of our community.

Chief Information Security Officer

David is an ’88 alum of OSU and served many years in the Marine Corps before returning to Oregon.  He has over 30 years’ experience in information technology and security, and was fortunate for the opportunity to return to OSU as the Chief Information Security Officer in 2019. In David's role as the Chief Information Security Officer (CISO) he acts as the senior-level executive at OSU responsible for maintaining the university vision, and the strategy of ensuring information assets and technologies are adequately protected. The CISO directs staff in identifying, developing, implementing, and maintaining processes across the enterprise to reduce information and information technology risks.

David McMorries