Main Nav

ECAR publications range from short, timely research bulletins to major research reports. See descriptions of ECAR research publications. >

Search results

Showing 1 - 10 of 16 Results

Sort by:

A Systematic, Comprehensive Approach to Information Security
July 6, 2005

Information security is a process of business risk management that must be performed on an ongoing basis. It is critical to take an approach to information security that examines the risks and s…

Campus IT Security: Governance, Strategy, Policy, and Enforcement
August 15, 2006

Successful implementation of an effective information, data, and system "security blanket" for higher education institutions requires recognition of and action upon the cultural, politi…

Computer and Network Security and Higher Education's Core Values
March 18, 2003

Colleges and universities have a host of security vulnerabilities. Insecure computers and networks have been exploited to launch a variety of attacks on computers--in the academy as well as in so…

Enterprise Content-Aware DLP Solution Comparison and Select Vendor Profiles
May 14, 2013

This Gartner report covers content-aware data-loss prevention, which has grown up and is on the verge of becoming a standard part of security architecture. A small set of vendors dominate a major…

Information Technology Security Policy: Keys to Success
November 11, 2003

This bulletin examines how higher education is coping with managing information technology security from the policy perspective. It focuses particular attention on policy processes and programs t…

IT Security Officer Survey
April 9, 2008

This April 2008 survey is a critical component of the EDUCAUSE Center on Applied Research (ECAR) study of information security officers in higher education. It seeks to understand the important c…

IT Security: The State of the Practice in Higher Education
November 6, 2003

In the spring of 2003, the EDUCAUSE Center for Analysis and Research (ECAR) launched a major study of IT security in higher education. Nearly 500 colleges and universities responded to the ECAR q…

Learning While Doing: Two Institutions’ Practical IT Risk Management Experiences
July 29, 2013

IT risk management identifies, assesses, and responds to IT risks. Effective IT risk management examines issues such as institutional use of data , IT security measures to prevent or…

Life with HIPAA: A Primer for Higher Education
April 1, 2003

The Health Insurance Portability and Accountability Act of 1996 (HIPAA) includes complex legislation that impacts higher education but was not specifically written with academic institutions in m…

Local IT Security for Colleges, Schools, and Departments: A Higher Education Perspective
December 5, 2006

This bulletin discusses some of the lessons learned by the Emory College, Faculty of Arts and Sciences, in developing its information technology security strategy, as well as what other schools g…