Main Nav

ECAR publications range from short, timely research bulletins to major research reports. See descriptions of ECAR research publications. >

Search results

Showing 1 - 10 of 28 Results

Sort by:

A Systematic, Comprehensive Approach to Information Security
July 6, 2005

Information security is a process of business risk management that must be performed on an ongoing basis. It is critical to take an approach to information security that examines the risks and s…

At Least It Wasn’t a Football Weekend: The Notre Dame Tunnel Fire
October 6, 2009

This ECAR research bulletin discusses how the University of Notre Dame created and refined its incident response plan, how the utility tunnel fire of August 28, 2009, played out within that fram…

Baylor University's IT Security Risk Assessment Program
October 12, 2006

This case study examines Baylor University's risk assessment program for information technology security, which was established in the face of the escalating demands that security places on …

Campus IT Security: Governance, Strategy, Policy, and Enforcement
August 15, 2006

Successful implementation of an effective information, data, and system "security blanket" for higher education institutions requires recognition of and action upon the cultural, politi…

CBO Perspectives on IT and Business Continuity
September 25, 2006

This September-October 2006 survey, administered to chief business officers and chief financial officers affiliated with the National Association of College and University Business Officers (NACU…

Changing Ideas of Campus Disaster Recovery: Designing Resiliency into Systems
September 25, 2007

This ECAR research bulletin suggests a framework to provide resiliency in higher education by placing such considerations up front in the evaluation, selection, and design of information technolo…

High Stakes: Strategies for Optimal IT Security Staffing
March 16, 2004

At many higher education institutions, casual staffing arrangements are no longer adequate to handle the myriad technical, procedural, and cultural issues surrounding information technology secur…

Incident Response: Lessons Learned from Georgia Tech, the University of Montana, and the University of Texas at Austin
October 13, 2003

This case study is a companion to the 2003 ECAR research study "Information Technology Security: Governance and Strategy in Higher Education." This study examines how information techno…

Information Security Governance: Standardizing the Practice of Information Security
August 19, 2008

This ECAR research bulletin discusses the trend to use a variety of risk assessment frameworks and standards to create an information security program that is sufficiently comprehensive for colle…

Information Technology Security at Indiana University
October 13, 2003

This case study is a companion to the 2003 ECAR research study "Information Technology Security: Governance and Strategy in Higher Education." This study examines how information techno…