Main Nav


Established by EDUCAUSE and Internet2 in July 2000, the Higher Education Information Security Council (HEISC) mission is to improve information security, data protection, and privacy programs across the higher education sector through its working groups of volunteers and professional EDUCAUSE staff that coordinate activities and collaborate with partners from government, industry, and other academic organizations. Through the annual Security Professionals Conference and other EDUCAUSE conferences and websites, HEISC actively develops and promotes leadership; awareness and understanding; effective practices and policies; and solutions for the protection of critical data, IT assets, and infrastructures.

The council's strategic priorities for 2014 include strengthening our foundations, continuing to build the information security profession, and advancing information security strategies in higher education. The council will also continue to address security and privacy hot topics as they arise within the higher education community.

HEISC Leadership Team

The HEISC Leadership Team is responsible for ensuring progress in meeting the strategic goals of the council. To accomplish this, it creates and monitors working groups and sponsors other activities; annually reviews the strategic goals to see if changes are needed; and annually sets objectives for the working groups that will produce tangible outcomes furthering the goals of the council.

    2014 Security Professionals Conference Program Committee Chair
  • Joshua Beeman, Chief Information Security Officer, University of Pennsylvania
    Governance, Risk, & Compliance Working Group Co-Chair
  • Sol Bermann, Privacy Officer, IT Policy & Compliance Strategist, University of Michigan-Ann Arbor
    Higher Education Chief Privacy Officers Group Liaison
  • Tammy Clark, Chief Information Security Officer, The University of Tampa
    Information Security Guide Editorial Board Co-Chair
  • Elias G. Eldayrie, Vice President and Chief Information Officer, University of Florida
    HEISC Co-Chair
  • Susan Grajek, Vice President, Data, Research, and Analytics, EDUCAUSE
    EDUCAUSE Staff Liaison
  • Joanna Lyn Grama, Portfolio Manager, Data, Research and Analytics, EDUCAUSE
    EDUCAUSE Staff Liaison
  • Cathy Hubbs, Chief Information Security Officer, American University
    Governance, Risk, & Compliance Working Group Co-Chair
  • Lori McElroy, Information Security Officer, Texas State University-San Marcos
    Awareness & Training Working Group Co-Chair
  • Kim Milford, REN-ISAC Executive Director, Indiana University
    REN-ISAC Liaison
  • Christopher Misra, Associate Chief Information Officer for Security, University of Massachusetts, Amherst
    Internet2 Salsa Chair
  • Kris Monroe, Information Security Officer, Ithaca College
    Awareness & Training Working Group Co-Chair
  • Peter J. Murray, Vice President and CIO, University of Maryland, Baltimore
    HEISC Co-Chair (outgoing)
  • Mike Osterman, IT Security Officer/Deputy Director, Enterprise Technology, Whitman College
    Technologies, Operations, and Practices Working Group Co-Chair
  • Doug Pearson, REN-ISAC Technical Director, Indiana University
    REN-ISAC Liaison
  • Jane Rosenthal, Director of Privacy, University of Kansas
    Higher Education Chief Privacy Officers Group Liaison
  • Theresa Semmens, Chief IT Security Officer, North Dakota State University
    Technologies, Operations, and Practices Working Group Co-Chair
  • Brian Smith-Sweeney, Assistant Director, New York University
    2015 Security Professionals Conference Program Committee Chair
  • Miguel Soldi, Assistant CISO, The University of Texas System
    Information Security Guide Editorial Board Co-Chair
  • Joseph E. St Sauver, Nationwide Security Programs Manager, Internet2 and the University of Oregon
    Internet2 Liaison
  • Valerie M. Vogel, Program Manager, EDUCAUSE
    EDUCAUSE Staff Liaison
  • Ann West, Assistant Director, InCommon Assurance and Community, Michigan Technological University
    Internet2/InCommon Liaison
  • Melissa Woo, Vice Provost and CIO, University of Oregon
    HEISC Co-Chair (incoming)
  • Steve Zoppi, Associate Vice President, Services Integration and Architecture, Internet2
    Internet2 Liaison

EDUCAUSE engages the HEISC co-chairs on a regular basis to identify and obtain the resources needed to accomplish the goals of the council, including recruiting the human resources; developing and implementing strategies to engage higher education institutional leadership, association executive leadership, and corporate leadership in furthering the goals of the council; ensuring effective communication and collaboration with Internet2, REN-ISAC, and InCommon working groups; and periodically assessing the functioning of the council and, when appropriate, overseeing the change process.

HEISC Working Groups

The Higher Education Information Security Council has established a number of working groups and committees to pursue projects and initiatives that are part of a coordinated strategy for higher education. You can help the council organize and coordinate efforts to improve cybersecurity in higher education–consider volunteering for a working group. Learn more about each working group or contact the council for more information.

HEISC Partnerships

HEISC org chart v4.pdf135.95 KB

Security Discussion Group

Participate in community discussions about cybersecurity and privacy in higher education.

HEISC Org Chart

Want to see how HEISC relates to Internet2, REN-ISAC, InCommon, or other EDUCAUSE groups? View our handy organizational chart [PDF].



Joanna Grama
Joanna Grama
Director of DRA Operations, IT GRC and Cybersecurity Programs

Valerie Vogel
Valerie Vogel
Program Manager

Want to Learn More?

For general information about HEISC or the EDUCAUSE Cybersecurity Initiative, please contact us:



Annual Conference
September 29–October 2
Register Now!

Events for all Levels and Interests

Whether you're looking for a conference to attend face-to-face to connect with peers, or for an online event for team professional development, see what's upcoming.


Digital Badges
Member recognition effort
Earn yours >

Career Center

Leadership and Management Programs

EDUCAUSE Institute
Project Management



Jump Start Your Career Growth

Explore EDUCAUSE professional development opportunities that match your career aspirations and desired level of time investment through our interactive online guide.


EDUCAUSE organizes its efforts around three IT Focus Areas



Join These Programs If Your Focus Is


Get on the Higher Ed IT Map

Employees of EDUCAUSE member institutions and organizations are invited to create individual profiles.



2014 Strategic Priorities

  • Building the Profession
  • IT as a Game Changer
  • Foundations

Learn More >

Uncommon Thinking for the Common Good™

EDUCAUSE is the foremost community of higher education IT leaders and professionals.