Capstone – Project

Designing a right-sized InfoSec governance model

A Collaboration Between

Engagement Synopsis

Vail Resorts has experienced rapid inorganic growth over the last decade, requiring an evolution of the organization’s IT operating model, processes, and governance.  In order to effectively manage riskat scale, Vail is looking to evaluate and refine its enterprise Information Security governance model to leverage available resources while efficiently managing the continued growth of the organization. The goal is to complete market research on industry-standard governance models and to develop recommendations for designing and measuring a program that is right-sized for Vail Resorts in its growth journey.

Company Information

CompanyVail Resorts
HQBroomfield, CO
StageMedium Business
Hiring PotentialN/A

Company Overview

Vail Resorts, Inc. is the premier mountain resort company in the world and a leader in luxury, destination-based travel at iconic locations. Our Company operates in three separate, but highly integrated segments: 1. Mountain - Our Mountain segment owns and operates ten world-class mountain resorts and three urban ski areas, including Vail, Beaver Creek, Breckenridge, and Keystone in Colorado; Park City in Utah; Heavenly, Northstar, and Kirkwood in the Lake Tahoe area of California and Nevada; Whistler Blackcomb in British Columbia, Canada; Perisher in Australia; Wilmot Mountain in Wisconsin; Afton Alps in Minnesota and Mt. Brighton in Michigan. 2. Lodging - Vail Resorts Hospitality owns and/or manages a portfolio of luxury hotels under the RockResorts brand, a number of hotels and condominiums located in proximity to our ski resorts, three destination resorts at Grand Teton National Park, and several award-winning golf courses. 3. Real Estate Development - Our Real Estate segment, Vail Resorts Development Company, holds, develops, buys, and sells real estate in and around our resort communities.

Course Info & Engagement Details

SchoolMasters in Business Administration (MBA)
Engagement Format -
CourseMBA APPLY Interterm (FALL 2019)
  • All Graduate
Students Enrolled120 Enrolled, 4-5 per group per project
Meeting Day & Time10/14 - 10/17/2019 on-site at host company
Student Time Commitment1-3 Hours Per Week
Company Time Commitment3-5 Hours
Duration0.43 Weeks

Project Topics

Business Analytics

Legal, Regulatory, Compliance

Software Design & Development

Program Timeline

Touchpoints & Assignments Due Date Type

Project Milestones

  • October 14, 2019 - Analysis and Evaluation of InfoSec Risk and Governance Landscape


    Suggested Deliverable:


  • October 16, 2019 - Design of an InfoSec Governance Model


    Suggested Deliverable:


  • October 17, 2019 - Implementation Roadmap and KPIs to measure success


    Suggested Deliverable:


Project Resources

There are no resources currently available

Industry Mentors

There are currently no supervisors assigned.

Academic Mentors


Alice Obermiller

[email protected]


Jim Cunningham

[email protected]

Assigned Students

There are currently no students assigned.