Main Nav

Building a Security Program to Include Metrics

In "Security Metrics: A Solution in Search of a Problem", a recent EDUCAUSE Quarterly article, Joel Rosenblatt (Manager of Computer and Network Security, Columbia University) describes how the creation and collection of appropriate metrics can enhance an institution's security program. Learn about some potential metrics in the following areas: policy and compliance, network and machine monitoring, outreach and education, legal compliance, authorization and authentication, asset protection, and privacy.

Information Sharing for IT Security Professionals

Learn how to develop a network of professional contacts in order to create an effective support system for information sharing within the IT Security community. Read the article "Information Sharing for IT Security Professionals" by EDUCAUSE Security Task Force Coordinator, Rodney Petersen in the latest EDUCAUSE Quarterly.

Tags from the Community

Security is Number One IT Issue According to 2008 Current Issues Survey Report

EDUCAUSE has published the results of the 2008 Current Issues Survey, and this year Security edged out Funding IT as the top strategic challenge.

The latest EDUCAUSE Quarterly article, "Current Issues Survey Report, 2008", states:

Tags from the EDUCAUSE Library

Tags from the Community

Help Promote the 2009 Computer Security Awareness Student Poster & Video Contest

The EDUCAUSE/Internet2 Computer and Network Security Task Force, in cooperation with the ResearchChannel, is conducting its third annual contest in search of computer security awareness posters and short videos developed by college students for college students. The contest, which is co-sponsored by the National Cyber Security Alliance (NCSA) and CyberWATCH, offers cash prizes ($1,000, $800 and $400) to the winners in each of the four categories. It also provides an opportunity for students to gain experience by developing creative and effective short videos or posters. The deadline for submission of entries is April 30, 2009.

Tags from the EDUCAUSE Library

Tags from the Community

Baker College Takes First Place in the 2008 National Collegiate Cyber Defense Competition (NCCDC)

Congratulations to Baker College (Flint, Michigan) on winning the third annual National Collegiate Cyber Defense Competition! After competing for the last three years, the Baker College team finally made it past the regional level to beat the 2007 winners from Texas A&M University.

The competition is a three day event hosted by the University of Texas at San Antonio's Center for Infrastructure Assurance and Security, a cybersecurity research and education center. Students have the opportunity to test their knowledge of network infrastructure management and protection in an operational environment. The competition also provides students with a chance to interact and discuss the security and operational challenges they will face upon entering the job market.

Tags from the EDUCAUSE Library

FireEye Joins Internet2 to Participate in High-Performance Network Security and Malware Analysis Initiatives

FireEye, Inc., a leader in global anti-botnet protection, announced that it has joined Internet2 as a corporate member. FireEye plans to collaborate with the Internet2 community on advanced network security projects involving high-performance network security and next- generation malware analysis In addition, FireEye and Internet2 will host a joint webinar titled "Botnet Incident Response" on April 2, 2008. FireEye's chief security content officer Dr. Fengmin Gong will also present "Scaling Security Analysis vs. Next-Gen Botnet Malware Using VM-Based Analysis" at the Spring Internet2 Member Meeting on April 21-23 in Arlington, Va.

Tags from the Community

New Risk Assessment Resources Available

The Security Task Force Risk Assessment Working Group wishes to inform higher education information security practioners of a few recent resource updates which are now available from the Risk Management section of the IT Security Guide

The Information Security Risk Assessment Consultants list provides a listing of vendors known to have conducted some form of IS risk assessment for at least one higher education institution. The only way a vendor can get onto this list is to be placed there by an EDUCAUSE member institution that has engaged the consultant. Each entry on this list provides a link to the institution which has provided the vendor reference. The list can be a starting place for schools that are seeking a consultant; referencing institutions may be willing to provide additional information about the vendor and the consulting engagement when asked.

Tags from the EDUCAUSE Library

National Campus Safety and Security Project Launched

EDUCAUSE has joined with NACUBO and several other higher education associations to launch a national campus safety and security project. The project team will conduct an 18-month study that will examine threats of every nature facing colleges and universities and develop guidelines for campus emergency management plans for prevention, preparedness, response, and recovery. Mark Luker, vice president of EDUCAUSE, underscores the importance of addressing campus threats through a multi-organizational effort: "EDUCAUSE, for example, has investigated cyber security and assisted institutions in solving related problems. Expanding on our past efforts in the most meaningful way to colleges and universities requires more of an enterprise approach. We’re looking forward to this opportunity to integrate the concerns and work of EDUCAUSE with those of our partners in the higher education community who represent other components of campus life."

Related link: EDUCAUSE/Internet 2 Computer and Network Security Task Force