Skip to main content
The IT Risk Management department’s mission is to support OSU A&M IT Service Providers in continuous improvement, innovation, and strategic goal setting, through risk focused: objective assurance practices, consultation, and insight.


Daisha Pennie

Daisha Pennie

Manager IT Risk Management



Daisha has a varied, 15 year background in the IT field, beginning in technical support for a global technology company. Throughout her years with OSU/A&M, her career portfolio has grown to include Data Center Operations, Mainframe Production Services, Oracle Database System Administration, Security and Compliance, and Risk Management. During the implementation of the Banner ERP, Daisha participated as the testing coordinator and in architecting access security. She’s updated, written, and established many organizational technology and security policies for OSU and the A&M System. With a vision to set the bar for IT Risk Management in Higher Education, Daisha's team has assisted multiple University business teams with securing their data and processes. She’s a Certified Information Systems Auditor (CISA) and Certified Information Systems Security Professional (CISSP). 


Areas of Interest and Growth

  • Organizational and IT leadership decision making processes 
  • AI and Machine learning in decision making 
  • IT innovation through leveraged risk 
  • Advanced risk awareness training programs 
  • Knowledge Organization Systems (ontology, knowledge graphs, etc.) 
  • Philosophy

Current Projects

  • Risk and Control Program
  • Innovation Zone and Allies Program
  • IT Service Portfolio Management
  • Role based security, risk, and compliance guidance tools




Back To Top
SVG directory not found.