Key Takeaways
- The Colorado Governor’s Office of Information Technology (OIT) laid off 173 state employees and replaced its director after two consecutive cybersecurity audits revealed major shortcomings.
- The restructure was described as a last‑minute, strategic shift aimed at improving cybersecurity and aligning OIT’s work more closely with specific state agencies.
- OIT manages a $373 million state budget and oversees roughly $1 billion in federal grants supporting services like SNAP and Medicaid.
- Audits in May 2023 and January 2026 found that only 10 of 71 recommended improvements had been fully implemented, leaving residents’ data potentially exposed.
- Former CIO David Edinger announced his resignation effective June 11; his successor, Sarah Tuneberg—interim deputy director and former COVID‑19 response lead—will assume the role on June 1.
- OIT leadership characterized the layoffs as a necessary workforce realignment, not a reflection of employee talent or commitment.
- The department did not comment on reports that affected employees received only minutes’ notice before the layoff announcement, but pledged severance, health benefits, and transition support without specifying duration.
Overview of the Layoff Announcement
The Colorado Governor’s Office of Information Technology (OIT) disclosed this week that it has terminated 173 state employees and replaced its department director. The move follows two cybersecurity audits that highlighted significant deficiencies in the agency’s ability to protect resident data. Officials characterized the action as a decisive step toward a new strategic direction rather than a judgment on the workforce’s abilities or dedication.
Leadership Changes and Timing
David Edinger, who served as both chief information officer and executive director of OIT, announced his resignation effective June 11, shortly after the layoffs were made public. His successor, Sarah Tuneberg—currently the interim deputy director of digital and delivery at OIT and previously the state’s COVID‑19 response lead—will assume the director role on June 1. Edinger’s departure comes just months after he joined the agency in the wake of a May 2023 audit that issued 71 improvement recommendations.
Budget Scope and Federal Responsibilities
OIT operates on an annual state appropriation of $373 million and administers approximately $1 billion in federal grants. These funds support the maintenance and enhancement of technology platforms that residents rely on to access essential state services, including the Supplemental Nutrition Assistance Program (SNAP) and Medicaid. The agency’s broad mandate makes its cybersecurity posture critical to the protection of sensitive personal information across multiple programs.
Audit Findings and Implementation Gaps
The most recent state audit, conducted in January 2026, revealed that OIT had fully implemented only 10 of the 71 recommendations issued after the May 2023 cybersecurity review. This low compliance rate indicated that many of the identified vulnerabilities remained unaddressed, potentially exposing resident data to risk when individuals accessed state‑run services. The audit results directly prompted the leadership’s decision to overhaul the department’s structure and operational approach.
Strategic Rationale Behind the Restructure
According to Edinger, the layoffs and leadership change reflect a “fundamental change” in how OIT will operate. The department intends to shift from a reactive model—addressing issues as they arise—to a proactive framework that assigns specialized teams to specific government agencies. By aligning OIT staff more closely with the missions of individual departments, the agency hopes to improve service delivery, enhance cybersecurity vigilance, and reduce the likelihood of future audit failures.
Reactions from OIT Leadership
Sarah Tuneberg described the day as “heavy” but also “bittersweet,” acknowledging the difficulty of parting with longtime colleagues while emphasizing that the reorganization marks an important step forward for the agency. Both leaders stressed that the workforce reductions were not a comment on the talent or commitment of those affected, but rather a necessary response to strategic imperatives identified through the audits.
Employee Notice and Transition Support
The Center Square inquired whether the 173 employees had received only a few minutes’ notice before the layoff announcement, but OIT did not provide a comment in time for publication. The agency issued a statement asserting its commitment to supporting impacted employees during the transition, offering severance packages, continued health benefits, and other assistance options. However, the notice did not specify the duration or detailed terms of this support.
Implications for State Technology Services
The overhaul of OIT carries significant implications for Colorado’s technology infrastructure and the security of resident data. By introducing specialized, agency‑focused teams, the state aims to close the gaps highlighted in recent audits and bolster defenses against cyber threats. Success will depend on the effectiveness of the new structure, the ability to retain and integrate remaining staff, and the timely implementation of the outstanding audit recommendations. Stakeholders will be watching closely to see whether the restructure yields measurable improvements in both service reliability and cybersecurity compliance.