Information Security Office
Clear Lake Center
Suite 1.158
Webster, TX 77598-1230

Phone: 409.772.3838


About The Information Security Office and Staff

Role, Function and Responsibilities

The Office of Information Security (OIS) is charged with the development and enforcement of policies, procedures and practices, maintains an up-to-date information security program and monitors the effectiveness of defined security controls. The OIS will also ensure that the confidentiality and integrity of all information resources (IR) and submits status reports, at least annually to the IRM as to the effectiveness of the overall information resources security program.

Information Security Staff
Bob Shaffer

Robert Shaffer "Bob" joined UTMB in 2001 and has been the Director of Information Security since 2006. He is responsible for maintaining oversight and control of UTMB's information resource security program. Bob entered the information security field in 1999 and has over 15 years of IT related experience. He is a Certified Information Systems Security Professional (CISSP) and is an active member of the International Information Systems Security Consortium and the UT System, Information Security Council.

Louis Perrin Louis Perrin joined the Information Security team in March, 2005 with 22 years of I.T. experience (16 yrs. with NASA contractors, and 6 in private sector enterprises).  Louis’ first I.S Security project with UTMB was the consolidation of five required security related online training courses into a single “Information Protection” course.  Louis’ I.T. certifications include CompTIA A+, Network+ and Security+, as well as Novell’s Certified Netware Engineer (CNE).
Patricia Delgado Patricia Delgado joined the Information Security team in October 2013 and is responsible for the information resource Risk Management Program. With over 20 years at UTMB, her experience includes Research Services, Audit Services, and Institutional Compliance. Tricia earned the designation, Certified Internal Auditor (CIA) in 2002 and Certified in Risk and Information Systems Control (CRISC) in 2014.
Drew Ganey Drew Ganey joined the Information Security team in March 2014.