-
Research
and Publications
Current Issue
March/April 2013
EDUCAUSE ReviewPublications
-
Conferences
and Events
Annual Conference
October 15–18, 2013
Save the date!Events for all Levels and Interests
Whether you're looking for a conference to attend face-to-face to connect with peers, or for an online event for team professional development, see what's upcoming.
-
Career
Development
EDUCAUSE Institute
Leadership/Management Programs
Explore MoreCareer Center
Leadership and Management Programs
EDUCAUSE Institute
Advanced Programs
Project Management
Jump Start Your Career Growth
Explore EDUCAUSE professional development opportunities that match your career aspirations and desired level of time investment through our interactive online guide.
-
Focus Areas
and InitiativesLatest Topics
EDUCAUSE organizes its efforts around three IT Focus Areas
Join These Programs If Your Focus Is
-
Connect
and ContributeFind Others
Get on the Higher Ed IT Map
Employees of EDUCAUSE member institutions and organizations are invited to create individual profiles.
-
About
EDUCAUSE
Subscribe
Filter by type
- Podcasts (1)
- Blogs (3)
- Articles, Briefs, Papers, and Reports (20)
- Blogs and Wikis (1)
- Certification, Education, Training and Tutorials (1)
- Effective Practices (2)
- Government Documents, Laws, Testimonies or Reports (2)
- Plans and Guidelines (2)
- Policies and Procedures (1)
- Presentations and Seminars (20)
- Surveys (1)
- Tools (3)
Filter by Publications
Filter by Presentations
Filter by Library Taxonomy
- Policy and Law [x]
- Security Risk Assessment and Analysis [x]
- Cybersecurity (57)
- Security Management (57)
- Campus Policy and Law (37)
- Campus Policies (36)
- Security Policies (34)
- Federal Policy and Law (27)
- Information Technology Management and Leadership (21)
- Data Security (18)
- Network Security and Applications (17)
- Security Planning (16)
- Cybersecurity Policy (15)
- Identity and Access Management (13)
- Federal Privacy Law (10)
- Security Awareness (10)
- Incident Handling and Response (9)
- Risk Management (8)
- Security Implementation (8)
- Authentication (7)
EDUCAUSE Library Items for Campus Safety
-
Information Security Program Assessment Tool
-
April 15, 2013
This self-assessment tool was created to evaluate the maturity of higher education information security programs using as a framework the International Organization for Standardization (ISO) 2700…
-
Software-as-a-Service Email Security: Risk vs. Trust
-
May 31, 2012
Many organizations would be interested in treating e-mail as a commodity —cutting costs and resource investments by outsourcing it to a software as a service (SaaS) provider. However, …
-
Guide to Enterprise Telework and Remote Access Security (SP 800-46 Revision 1)
-
June 4, 2009
Many organizations’ employees and contractors use enterprise telework technologies to perform work from external locations. Most teleworkers use remote access technologies to interface with an…
-
Compliance Matrix Poster for IT & Compliance Professionals
-
March 17, 2010
This matrix poster developed by Symantec outlines IT Controls for security and privacy concerns related to regulatory compliance in the workplace. Topics addressed in this poster include: Regu…
-
The Journey to a Successful Risk Assessment: One Strategy Unveiled
-
February 19, 2010
|
A session at the EDUCAUSE Southwest Regional Conference 2010
A sound risk assessment process is one of the building blocks of a maturing information security program. Join the IT Security Team from Texas State University as they reveal the process and proced…
-
Information Technology Sector Baseline Risk Assessment
-
August 28, 2009
The IT Sector Baseline Risk Assessment evaluates risk to the IT Sector and focuses on critical IT Sector functions. The assessment methodology is not intended to be guidance for individual entiti…
-
The Cost of Preventing Breaches
-
November 4, 2009
|
A session at the EDUCAUSE 2009 Annual Conference
We all know only too well that there are significant costs associated with both experiencing and preventing data breaches, and we are continually challenged with finding the right mix of people, pr…
-
Conducting Internal PCI DSS Assessments
-
April 21, 2009
|
A session at the Security 2009
Like many higher education institutions, Penn State has come to rely on the ease of use of credit cards as an acceptable form of payment for tuition, products, services, and donations. From a finan…
-
Performing Risk Analysis and Testing: Outsource or In-House? A Towson University Case Study
-
January 7, 2009
|
A session at the EDUCAUSE Mid-Atlantic Regional Conference 2009
To ensure that institutional systems are secure and meet payment card industry requirements, managers must perform regular risk tests on various systems across campus. When we lost our security eng…
-
Compliance Assessment Template
-
September 24, 2008
This sample Harvard University questionnaire is designed to assist people in understanding if the setup and operation of their systems are in compliance with the Harvard Enterprise Information …
