Conferences & Events
Events for all Levels and InterestsStay
Jump Start Your Career GrowthStay
Get on the Higher Ed IT MapStay
Uncommon Thinking for the Common Good™Stay
Filter by type
Filter by Presentations
The EDUCAUSE/Internet2 Higher Education Information Security Council (HEISC) works to improve information security, data protection, and privacy programs across the higher education sector through its volunteers and focused partnerships with government, industry and other academic organizations.
New to Your Security Role?
If you are a new CISO or new to the higher education community, we recommend checking out the Toolkit for New CISOs, a resource developed by members of the Higher Education Information Security Council.
Information Security Guide: Effective Practices and Solutions for Higher Education
The Information Security Guide: Effective Practices and Solutions for Higher Education is now available in wiki format. This resource provides practical approaches to preventing, detecting, and responding to security problems in a wide range of higher education environments. This online service is designed with colleges and universities in mind, balancing our need for security with the need for an open, collaborative networking environment. Also, because one of the overarching concerns in college and university information technology (IT) departments is a lack of resources, an effort is made to provide low-cost solutions. The target audiences are those responsible for information security in colleges and universities and information technology staff who implement and manage security measures. Recognizing that many institutions have initiated or are in the process of developing IT security programs and policies, an effort is made throughout this resource to present practices that are useful at each stage of the developmental process.
As a community-driven, community-serving project, it is important for this initiative to incorporate experiences and perspectives from many different institutions. To contribute case studies that have been effective in your institution, please contact firstname.lastname@example.org.
Library Items on this Topic
EDUCAUSE Library Items for Cybersecurity
- PCI DSS: Credit Card Security Basics
February 19, 2010
A session at the EDUCAUSE Southwest Regional Conference 2010
The session will discuss the security of credit card information with the objective of complying with Payment Card Industry Data Security Standards (PCI DSS). Discussion will center on getting star…
- Seminar 1 - The Big Picture: Introduction to Identity and Access Management PLEASE NOTE: Separate registration and fee are required to attend this seminar.
February 4, 2009
How many times has this happened to you? A student comes up to you and asks, "How is my digital identity assured, and can I use my campus user ID and password to seamlessly review my federal…
- Privacy, Security, and Identity Management for Research Environments
February 3, 2009
As institutions of higher education move to safeguard IT assets and protect the community's privacy, they must not overlook the need to secure research data and ensure its integrity. Instituti…
- The FTC as an Educational Partner in Improving Data Security and Privacy
May 7, 2008
The Federal Trade Commission deals with issues that touch the economic lives of most Americans. The current portfolio includes protecting consumers in the areas of data security and privacy, identi…
- Applying Data Governance in Identity Management: To Serve and Protect
April 1, 2008
A session at the EDUCAUSE Western Regional Conference 2008
An identity management system often becomes a critical source of information for electronic services. Demands for data can result in tension between those who collect and safeguard the data and tho…
- Protecting Data: Managing Risk of Exposure through Abatement
February 14, 2008
How can you control access to social security numbers, personal identifiable information, and payment card industry data? Setting up a few architectural principles, solutions, and related policies …
- Privacy and Security in Higher Education: Filling the Policy Vacuum
August 7, 2007
Colleges and universities possess an exceptional volume and variety of personal information. Our stewardship of such information has been inconsistent and inadequate, and we often implement new tec…
- Security Breaches and Identity Theft
May 17, 2007
As Congress strives to pass legislation that would provide a uniform federal law for security breach notifications, a number of related privacy and security policy proposals are under consideration…
- Higher Education-Industry Collaborations to Improve Security
February 5, 2007
This session will provide an update of recent EDUCAUSE/Internet2 Security Task Force initiatives with vendors, including collaborations with ERP vendors to address application and integration secur…
- Data Security and Incident Notification
April 26, 2006
As data security breaches at colleges and universities continue to mount, government mandates for incident notification are emerging at the state level, and Congress is considering several proposal…