Cybersecurity

Main Nav

Introduction

The higher education sector plays an important role in the cybersecurity of America. Through its core mission of teaching and learning, higher education is the main source of future leaders, innovators, and the technical workforce. Through research, higher education is the basic source of much of our new knowledge and future technologies. Colleges and universities also operate some of the world's largest collections of computers and high-speed networks. This resource page provides information related to all aspects of cybersecurity for higher education, with an emphasis on strategies, policies, and other tools that will assist institutions of higher education to prevent, detect, and respond to vulnerabilities that threaten college and university computers and networks.

EDUCAUSE is actively involved with this area through the EDUCAUSE/Internet2 Higher Education Information Security Council (formerly the Security Task Force).

Information Security Guide: Effective Practices and Solutions for Higher Education

The Information Security Guide: Effective Practices and Solutions for Higher Education is now available in wiki format. This resource provides practical approaches to preventing, detecting, and responding to security problems in a wide range of higher education environments. This online service is designed with colleges and universities in mind, balancing our need for security with the need for an open, collaborative networking environment. Also, because one of the overarching concerns in college and university information technology (IT) departments is a lack of resources, an effort is made to provide low-cost solutions. The target audiences are those responsible for information security in colleges and universities and information technology staff who implement and manage security measures. Recognizing that many institutions have initiated or are in the process of developing IT security programs and policies, an effort is made throughout this resource to present practices that are useful at each stage of the developmental process.

As a community-driven, community-serving project, it is important for this initiative to incorporate experiences and perspectives from many different institutions. To contribute case studies that have been effective in your institution, please contact security-council@educause.edu.

Events Calendar

View past and future security-related events.

Latest News

Five Pilot Projects Receive Grants to Promote Online Security and Privacy

InCommon will be heavily involved in a $1.8 million grant awarded to Internet2 to build a consistent and robust privacy infrastructure. Partners include Carnegie Mellon, Brown, University of Texas...

Virginia Tech First to Achieve Bronze and Silver Assurance

Virginia Tech has become the first identity provider to achieve Bronze and Silver certification as part of the InCommon Assurance Program.

Recommended IAM Sessions at EDUCAUSE 2012

The annual EDUCAUSE Conference in Denver will provide an opportunity to explore the range and depth of issues that campuses must consider as they build...

Recommended Security & Privacy Sessions at EDUCAUSE 2012

Find a variety of E12 security and privacy-related sessions in Denver or online.

National Cyber Security Awareness Month 2012 is HERE!

Find resources and see what other campuses are doing this October for NCSAM.

Policy Matters NCSAM Article (Sep/Oct 2012)

NCSAM article in the latest EDUCAUSE Review offers resources and suggestions for campuses to support security awareness efforts in October.

Library Items on this Topic

View All

EDUCAUSE Library Items for Cybersecurity

Showing 1 - 10 of 21 Results

Sort by:

Relevancy | Title | Date

Data Custodians, It's 11 p.m.: Do You Know Where Your Confidential Data Is?: March 20, 2013 | A session at the Midwest Regional Conference
Many campuses find that the proliferation and continued storage of confidential data on desktop and laptop computers to be one of their top security risks. In combination with policy and awareness …
Making Information Security a Shared Responsibility at Harvard Business School: March 29, 2011 | A session at the NERCOMP Annual Conference 2011
With increasing legislative attention to personal privacy and data protection, a successful information security program must be centered on the shared responsibilities of individuals within the or…
Seminar 01A - IT Security in Higher Education: Prepare, Prevent, Protect-It's Everyone's Responsibility! PLEASE NOTE: Separate registration and fee are required to attend this seminar.: March 28, 2011 | A session at the NERCOMP Annual Conference 2011
This seminar will be presented by a group of information security experts who will discuss the four basic components of security: prevention, detection, response and recovery. Prevention is the are…
Effective Incident Response Strategies for Managing Sensitive Data Incidents: March 10, 2010 | A session at the NERCOMP Annual Conference 2010
In 2009, MIT's Data Incident Response Team (DIRT) experienced a surge of reports of suspected sensitive data exposure incidents. As awareness of the new Massachusetts Data Breach Notification …
Digital Self-Defense Training for Students, Faculty, and Staff: March 9, 2010 | A session at the NERCOMP Annual Conference 2010
Internet-based learning, teaching, and scholarship are not limited to classrooms and laboratories anymore. They also occur in wireless hotspots, Internet cafés, hotels and hostels, off-campus resi…
It's Past Midnight: Do You Know Where Your Data Are?: March 17, 2008 | A session at the EDUCAUSE Midwest Regional Conference 2008
Since instituting a mandatory review and approval process for all contracts involving IT, we've become aware of how few people know how to prepare a good contract and how few contracts truly p…
Security Standards: Complexity Is the Enemy of Security: March 12, 2008 | A session at the NERCOMP Annual Conference 2008
Everyone wants to know how to "be secure." The myriad higher ed compliance requirements, coupled with a constantly dynamic attacker strategy, have made this question more difficult than e…
Seminar 3P - A Blueprint for Handling Sensitive Data: Security, Privacy, and Other Considerations PLEASE NOTE: Separate registration and fee are required to attend this seminar.: March 19, 2007 | A session at the NERCOMP Annual Conference 2007
Information security risks at colleges and universities present challenging legal, policy, technical, and operational issues. According to a recent study by the EDUCAUSE Center for Applied Researc…
Cyber Security Haunted House: Creating a New Approach to Reach Students: March 12, 2007 | A session at the EDUCAUSE Midwest Regional Conference 2007
The month of October provides an exciting theme to leverage the message of security awareness. Indiana State University--along with its traditional marketing and information tools of newspaper ads,…
Integration Through Participation: Security Is Everyone's Business: January 17, 2007 | A session at the EDUCAUSE Mid-Atlantic Regional Conference 2007
How many people does the IT security staff serve? Thousands. Policies are needed and great to have, but the reality is that IT security depends on all users. We'll review security related poli…

Main Nav

Publications

Research

Major Conferences

Online Events

Special Topic Events

Events for all Levels and Interests

Career Center

Leadership and Management Programs

Fellowships and Awards

Getting Involved

Jump Start Your Career Growth

Latest Topics

EDUCAUSE organizes its efforts around three IT Focus Areas

Join These Programs If Your Focus Is

From the Blogs

Find Others

Share Ideas

Get on the Higher Ed IT Map

2013 Strategic Priorities

Membership

Who We Are

Stay Informed

Uncommon Thinking for the Common Good™

< EDUCAUSE Library

Subscribe

Browse this Topic

Refine Topic...

Your Selections Under:

Related Topics

Filter by type

Filter by Publications

Filter by Presentations

Filter by Library Taxonomy