Biever named security officer

Feb. 14, 2011

Richard Biever, currently information security policy and compliance manager for the Georgia Institute of Technology's Office of Information Technology, will assume the role of chief information security officer for Duke University on Feb. 16, 2011, reporting to Vice President for Information Technology and Chief Information Officer (CIO) Tracy Futhey. Biever will handle IT security issues for the university, working closely with his counterpart in the Duke health system. He will coordinate campus-wide security efforts through the Security Liaisons Group, which comprises IT security people from departments and schools across Duke.

At Georgia Tech, Biever has managed the policy and compliance efforts of the information security office for the past three years. In that role, he led a major initiative in disaster recovery/business continuity, revamped Georgia Tech's  approach to IT policies, led an effort to develop a security-vulnerability-alert program, established an information-security-certificate program for internal Georgia Tech IT support staff and facilitated the institution’s compliance with regulations such as FERPA and PCI.

John Mullin, the CIO at Georgia Tech under whom Biever served, praised Biever for the leadership he provided in the development of new information security and data access policies and procedures, and for his collaboration with faculty from across the institute. "Richard led a large and disparate committee of faculty, students, technologists and administrators in crafting a family of policies that protects Georgia Tech's information assets in a manner that is minimally invasive. His very successful approach to forging relationships and partnerships with the campus stakeholders was built upon a solid foundation of expertise in his discipline coupled with an instinctive understanding of the complex professional and interpersonal environment of a research university. Richard leaves Georgia Tech a legacy of continuous improvements in the protection of information, along with a strong spirit of trust and partnership with the faculty and student leadership."

Prior to joining Georgia Tech, Biever spent 10 years at Hewlett Packard in a variety of technical and security roles. He also served in technical management and service roles at PeachNet, Georgia’s education and research network, and the Lovett School. He is an experienced security professional with SANS GIAC Global Security Essentials Certification (GSEC), and Certified Information Systems Security Professional (CISSP) and Information Systems Security Architecture Professional (IS SAP) credentials from International Information Systems Security Certification Consortium, or ISC(2).

"Richard’s diverse background suggests that he is just as skilled in managing technology as he is in managing people, process and policy," said Futhey in announcing Biever's appointment. "His experience in highly distributed IT environments—supporting security services for a global corporate IT operation and leading policy and compliance at a world-class research university—position him well for the environment here at Duke."

Biever holds a bachelor’s degree in political science from the University of Georgia and a master’s degree in international relations from Georgia State University.