It is with mixed emotions that we announce the retirement of Kim Milford, effective December 19, 2025. While we are happy for Kim as she embarks on this next exciting , she will be deeply missed by our team and the entire university community.
Kim joined the university as CISO in April 2023, and in 2025, her position was expanded to include the role of chief privacy officer—a testament to her exceptional leadership and the trust she earned across the institution.
During her time with us, Kim has been instrumental in advancing our cybersecurity posture and building a culture of security awareness. She helped lead the ongoing implementation of the multi-year Cybersecurity Improvement Initiative, which aims to increase protection for people, data and resources through endpoint management and incident detection in its initial phase. Her strategic vision and steady hand guided us through complex challenges, always keeping the protection of our community at the forefront.
Kim's collaborative spirit has been evident in her work supporting staff in the development and updates to CAM policies, including the Appropriate Use Policy and the Use of Controlled Unclassified Information Policy. She has been an active and valued participant in working groups focused on enhancing cybersecurity, identity and privacy at the university, including awareness and training, compliance and data management groups. Her willingness to share expertise and mentor others has elevated not just the Office of the CIO, but the broader information security community through her national presentations and professional discussions.
Beyond her technical expertise and policy acumen, Kim has brought warmth, integrity and dedication to everything she does. She has been a trusted advisor, a patient educator and a fierce advocate for protecting our university community. Her impact will be felt for years to come through the programs she established and the people she inspired.
Please join us in thanking Kim for her outstanding service and wishing her all the best in her well-deserved retirement.
Stefan Wahe, University of Illinois System HIPAA privacy and security director, has agreed to serve as interim CISO while continuing in his current position.
Mairéad Martin
Vice Provost for IT and Chief Information Officer