Biography

Jim Dillon accepted an IT Audit Manager position at Colorado State University (CSU) starting July 5, 2022, continuing the role and tradition of his University of Colorado (CU) Internal Audit directorship.  He served the department of Internal Audit at CU as the Director of IT Audit Services for the University of Colorado until May, 2022, and the University of Colorado since 1999 in Audit and IT Management roles. The university internal audit function reports to the board on topics of governance, control, risk management, and objective achievement. Internal Audit provides assessment and consultation covering the breadth of IT services from general control concerns, specific technological control and risk, and IT governance for the university System Office and each university campus. From 2008 to early 2013 Jim served as a program director for the University of Colorado Boulder campus, managing budget and direction setting for administrative systems, data services, and identity and access management services. Prior to that he served in the university Internal Audit Office as a senior IT Audit Manager from 1999 to 2008. Previous duties and accomplishments include: IT Audit and Software Engineering positions for merchandising and manufacturing companies since 1988. He completed his Master's degree in Business Policy and Strategy at the University of Texas at Dallas, and his undergraduate degree in Computer Science at Colorado State University. Jim is a Certified Information Systems Auditor (CISA) and Certified Information System Security Professional (CISSP). He has obtained the ITIL v3 Foundations Certificate. Jim contributes to the IT security and control industry through involvement as a member, occasional presenter and author of audit and security related articles, and through active membership or participation in Educause and the following organizations: Member, Information Systems Audit and Control Association (ISACA), Member, Institute of Internal Auditors (IIA), Member, Association of College and University Auditors (ACUA), Member, International Information Systems Security Certification Consortium (ISC^2), Participant, local Information Systems Security Association (ISSA), Participant, various SANS discussion and news groups, Participant-contributor at Big 12 and PNWHEIA conferences and events.