-
Research
and Publications
Current Issue
March/April 2013
EDUCAUSE ReviewPublications
-
Conferences
and Events
Annual Conference
October 15–18, 2013
Save the date!Events for all Levels and Interests
Whether you're looking for a conference to attend face-to-face to connect with peers, or for an online event for team professional development, see what's upcoming.
-
Career
Development
EDUCAUSE Institute
Leadership/Management Programs
Explore MoreCareer Center
Leadership and Management Programs
EDUCAUSE Institute
Advanced Programs
Project Management
Jump Start Your Career Growth
Explore EDUCAUSE professional development opportunities that match your career aspirations and desired level of time investment through our interactive online guide.
-
Focus Areas
and InitiativesLatest Topics
EDUCAUSE organizes its efforts around three IT Focus Areas
Join These Programs If Your Focus Is
-
Connect
and ContributeFind Others
Get on the Higher Ed IT Map
Employees of EDUCAUSE member institutions and organizations are invited to create individual profiles.
-
About
EDUCAUSE
Subscribe
Filter by Publications
Filter by Library Taxonomy
- Security Awareness [x]
- Security Management [x]
- Cybersecurity (8)
- Information Technology Management and Leadership (7)
- Policy and Law (7)
- Incident Handling and Response (6)
- Campus Policies (5)
- Campus Policy and Law (5)
- Federal Policy and Law (5)
- Security Policies (5)
- IT Governance (4)
- Institutional Management (4)
- Cybersecurity Policy (3)
- Executive Security Awareness (2)
- Information Security Governance (2)
- Planning (2)
- Security Risk Assessment and Analysis (2)
- Intellectual Property (1)
- Privacy (1)
- Teaching and Learning (1)
Introduction
Awareness and training are critical at all stages and levels of information security. For example, upper management needs to learn about the institutional risks; users must be taught how to defend themselves against malicious code; system and network administrators require training to help them maintain and improve the security of the systems they oversee; and information security support staff must be well-versed in all of these areas and have a solid understanding of vulnerability assessment, intrusion detection, incident response, encryption, and authentication.
Resources Developed by the Higher Education Information Security Council (HEISC)
- Cybersecurity Awareness Resource Library
- Executive Security Awareness Resources
- Information Security Poster & Video Contest
- National Cybersecurity Awareness Month (NCSAM) Resource Kit
- National Cybersecurity Awareness Month (NCSAM) Sample Kit
- Security Awareness Quick Start Guide
- Security Awareness Detailed Instruction Manual
College and University Education and Awareness Programs and Resources
- Carnegie Mellon University Software Engineering Institute (SEI) CERT Coordination Center Resources for CSIRTs (Computer Security Incident Response Teams)
- George Mason University Security Awareness
- North Dakota State University ITS Training
- Rochester Institute of Technology Digital Self Defense Training
- Texas A&M University Security Awareness Training
- University of Arizona Information Security Awareness, Education, and Training
- University of Calgary Security Awareness Program
- University of Virginia Security Awareness
- Virginia Tech Awareness Training
Updated October 2012
Latest News
Find resources and see what other campuses are doing this October for NCSAM.
NCSAM article in the latest EDUCAUSE Review offers resources and suggestions for campuses to support security awareness efforts in October.
Library Items on this Topic
EDUCAUSE Library Items for Security Awareness
-
Software-as-a-Service Email Security: Risk vs. Trust
-
May 31, 2012
Many organizations would be interested in treating e-mail as a commodity —cutting costs and resource investments by outsourcing it to a software as a service (SaaS) provider. However, …
-
The Virginia Alliance for Secure Computing and Networking (VA SCAN): A Statewide Collaborative IT Security Resource
-
October 17, 2006
This case study examines ways in which the Virginia Alliance for Secure Computing and Networking (VA SCAN) provides a blueprint for higher education institutions interested in collaboratively pro…
-
Baylor University's IT Security Risk Assessment Program
-
October 12, 2006
This case study examines Baylor University's risk assessment program for information technology security, which was established in the face of the escalating demands that security places on …
-
Campus IT Security: Governance, Strategy, Policy, and Enforcement
-
August 15, 2006
Successful implementation of an effective information, data, and system "security blanket" for higher education institutions requires recognition of and action upon the cultural, politi…
-
Higher Education in the Age of Paradox: Fostering a Culture of Evidence
-
May 16, 2006
Presentation at the May 2006 ECAR Academy in Dedham, Massachusetts. "NERCOMP Presents: ECAR Academy" was developed jointly by NERCOMP and ECAR to develop the next generation of current …
-
Surveying the Steps to a Secure Emory University
-
March 28, 2006
This research bulletin summarizes how Emory University used the results of a security survey of higher education institutions to make important, peer-informed decisions on how to secure and prote…
-
High Stakes: Strategies for Optimal IT Security Staffing
-
March 16, 2004
At many higher education institutions, casual staffing arrangements are no longer adequate to handle the myriad technical, procedural, and cultural issues surrounding information technology secur…
-
Information Technology Security: Governance, Strategy, and Practice in Higher Education
-
October 24, 2003
Abstract U.S. higher education institutions have historically enjoyed a culture of open access to information. The free flow of information faces increasing challenges as concerns about info…
