Text Size
Increase text size
Increase text size

OIS Organization

The mission of OIT's Office of Information Security (OIS) is directly aligned with the goals and objectives of the National Strategy to Secure Cyberspace and is the single state source for cyber security readiness and awareness. Working closely with federal, state, local and private sector partners, the Office of Information Security actively gathers and analyzes information on cyber threats and vulnerabilities that present risk to the state's information systems or the critical information managed within.

Chief Information Security Officer

The CISO is responsible for enterprise-wide Colorado Information Security Program (CISP) which includes governance, risk, compliance and risk management. Deborah Blyth is the CISO for the State of Colorado.

Office of Cyber Security

Security Management
The OIS Security Management is responsible for security risk management across state departments. This group manages State Information Security Policies, Security Standards, onsets with agencies on technical matters, and manages enterprise projects to meet security requirements.


Compliance Program
The OIS Compliance Program has oversight of applicable regulatory compliance to include compliance with federal and state laws, regulations, and Colorado Information Security Policy.


Application Security Program
The OIS Application Security Program is responsible for the creation of secure coding best practices to protect Colorado's information systems and mission critical applications.


 OCS Logo