Home Executive-Insights CISO Georgia Tech Appoints Joseph L...

Georgia Tech Appoints Joseph Lewis as New Chief Information Security Officer

CISO

Business Honor
25 July, 2025

Veteran cybersecurity expert to lead information security and risk management across the Georgia Tech campus.

Georgia Institute of Technology welcomed Joseph "Joe" Lewis as its new Associate Vice President of Information Technology and Chief Information Security Officer (CISO). Lewis will begin his new role on July 28, 2025, after an open national search. Having over 20 years of cybersecurity experience, Lewis has a strong background in leading information security in federal, defense, and private organizations. Previously, he worked as Vice President of Cybersecurity Solutions at Leidos, a large IT and defense contractor. He was also interim CISO for Leidos' subsidiary, QTC Health Services.

Earlier, Lewis served as CISO for the U.S. Centers for Disease Control and Prevention (CDC), where he directed cybersecurity efforts throughout the organization. He has also held senior roles at the U.S. Department of Energy and the Department of the Army. Lewis will be in charge of the Cyber Security team at Georgia Tech and will be responsible for information security and risk management across the Institute. He will report to Leo Howell, Vice President for Information Technology and Chief Information Officer.

"Joseph is a highly experienced cybersecurity strategy and risk management leader," Howell said. "His extensive experience will boost Georgia Tech's cyber defense posture and support our research and innovation mission." Lewis holds a Ph.D. in cybersecurity leadership, an MBA, a Bachelor of Science degree in Business Information Systems, and an executive master's degree in Public Administration and Public Service. He also possesses multiple industry certifications, including CISSP, CISM, and PMP. With his extensive experience, Lewis will be ahead in protecting Georgia Tech's digital information and making sure that there is adherence to cybersecurity requirements.