Events for all Levels and InterestsStay
Jump Start Your Career GrowthStay
Get on the Higher Ed IT MapStay
Uncommon Thinking for the Common Good™Stay
Filter by type
- Policies and Procedures [x]
Filter by Publications
Filter by Library Taxonomy
- Cybersecurity Policy [x]
- Cybersecurity [x]
- Data Security (12)
- Federal Policy and Law (12)
- PCI DSS (12)
- Policy and Law (12)
- Security Management (12)
- 30363 (4)
- Campus Policy and Law (4)
- Security Policies (3)
- Privacy (2)
- Data Classification Policies (1)
- Distributed Computing (1)
- Information Technology Management and Leadership (1)
- Mobile Computing (1)
- Mobile Policy (1)
- Mobile Security (1)
The EDUCAUSE/Internet2 Higher Education Information Security Council (HEISC) works to improve information security, data protection, and privacy programs across the higher education sector through its volunteers and focused partnerships with government, industry and other academic organizations.
New to Your Security Role?
If you are a new CISO or new to the higher education community, we recommend checking out the Toolkit for New CISOs, a resource developed by members of the Higher Education Information Security Council.
Information Security Guide: Effective Practices and Solutions for Higher Education
The Information Security Guide: Effective Practices and Solutions for Higher Education is now available in wiki format. This resource provides practical approaches to preventing, detecting, and responding to security problems in a wide range of higher education environments. This online service is designed with colleges and universities in mind, balancing our need for security with the need for an open, collaborative networking environment. Also, because one of the overarching concerns in college and university information technology (IT) departments is a lack of resources, an effort is made to provide low-cost solutions. The target audiences are those responsible for information security in colleges and universities and information technology staff who implement and manage security measures. Recognizing that many institutions have initiated or are in the process of developing IT security programs and policies, an effort is made throughout this resource to present practices that are useful at each stage of the developmental process.
As a community-driven, community-serving project, it is important for this initiative to incorporate experiences and perspectives from many different institutions. To contribute case studies that have been effective in your institution, please contact email@example.com.
Library Items on this Topic
EDUCAUSE Library Items for Cybersecurity
- Payment Card Industry Data Security Standard (PCI-DSS): Security Audit Procedures
September 11, 2006
The PCI Security Audit Procedures are designed for use by assessors conducting onsite reviews for merchants and service providers required to validate compliance with Payment Card Industry (PCI) …
- Payment Card Industry Data Security Standard (PCI-DSS): Security Scanning Procedures
September 11, 2006
This document explains the purpose and scope of the Payment Card Industry (PCI) Security Scan for merchants and service providers who undergo PCI Security Scans to help validate compliance with t…