-
Research
and Publications
Current Issue
March/April 2013
EDUCAUSE ReviewPublications
-
Conferences
and Events
Annual Conference
October 15–18, 2013
Save the date!Events for all Levels and Interests
Whether you're looking for a conference to attend face-to-face to connect with peers, or for an online event for team professional development, see what's upcoming.
-
Career
Development
EDUCAUSE Institute
Leadership/Management Programs
Explore MoreCareer Center
Leadership and Management Programs
EDUCAUSE Institute
Advanced Programs
Project Management
Jump Start Your Career Growth
Explore EDUCAUSE professional development opportunities that match your career aspirations and desired level of time investment through our interactive online guide.
-
Focus Areas
and InitiativesLatest Topics
EDUCAUSE organizes its efforts around three IT Focus Areas
Join These Programs If Your Focus Is
-
Connect
and ContributeFind Others
Get on the Higher Ed IT Map
Employees of EDUCAUSE member institutions and organizations are invited to create individual profiles.
-
About
EDUCAUSE
Subscribe
Filter by type
- Effective Practices [x]
Filter by Publications
Filter by Library Taxonomy
- Security Risk Assessment and Analysis [x]
- Cybersecurity (7)
- Security Management (7)
- Cybersecurity Policy (2)
- Federal Policy and Law (2)
- Network Security and Applications (2)
- Network Vulnerability Assessment (2)
- Policy and Law (2)
- Security Implementation (2)
- Data Security (1)
- E-Commerce (1)
- Encryption (1)
- Federal Privacy Law (1)
- Health Insurance Portability and Accountability Act (HIPAA) (1)
- Information Technology Management and Leadership (1)
- Networking and Emerging Technologies (1)
- Risk Management (1)
- Security Awareness (1)
- Technology Selection (1)
- Vendor Selection (1)
EDUCAUSE Library Items for Active Learning
-
Implementing Information Security Governance Using ISO 27000
-
March 17, 2011
GSU's CIO sponsored the ISO 27001 certification initiative at Georgia State University in mid 2007 and the Information Security Department and Office of Disbursements were the first GSU depa…
-
Georgia State University's IT Procurement Review Process--Practical Approach to Assessing Risks of IT Projects
-
March 17, 2011
In late 2005, the Security Review Policy was adopted by the University, which states "Where appropriate, information security personnel will conduct risk assessments of technologies/processe…
-
Whole Disk Encryption Evaluation and Deployment
-
October 2, 2008
Baylor University has spent two years working on a large-scale deployment of whole-disk encryption. Baylor University has spent two years working…
-
Lessons Learned from RIT’s First Security Posture Assessment
-
January 1, 2004
Rochester Institute of Technology (RIT) is the 11th largest private university in the United States with approximately 22,500 hosts on our network. We have one of the largest computer science and…
-
Five-Year Rotating Audit Focus Based on Risk Assessment at Georgia Tech
-
January 1, 2004
Georgia Tech operates one of the most complex networks in the world. The institute has more than 30,000 machines accessing the backbone daily. Most legacy, state-of-the-market, and state-of-the-a…
-
HIPAA Security Assessment
-
January 1, 2004
The Indiana University-Purdue University Indianapolis (IUPUI) assessment tool was developed based on initial work by the North Carolina Health and Human Services (NCHHS) office. The NCHHS HIPAA S…
-
E-Commerce and the Cardholder Information Security Program (CISP)
-
January 1, 2005
This submission provides basic information important for universities that sell products or services online and collect fees via credit card. The approach is meant to help institutions of higher …
