Security Planning

EDUCAUSE Library Items for Security Planning

Are You Ready? A Planning Tool for Managing Sensitive Data Incidents

May 16, 2012 | A session at the Security Professionals Conference 2012

Universities have had to deal with many different types of incidents involving the exposure of sensitive and legally protected information. When an incident occurs, those involved usually have limi…

Effective Incident Response Strategies for Managing Sensitive Data Incidents

March 10, 2010 | A session at the NERCOMP Annual Conference 2010

In 2009, MIT's Data Incident Response Team (DIRT) experienced a surge of reports of suspected sensitive data exposure incidents. As awareness of the new Massachusetts Data Breach Notification …

2008 NSF Cybersecurity Summit Report

November 19, 2008

The 2008 NSF Cybersecurity Summit was held May 7-8 in Crystal City, Virginia. The purpose was to bring together stakeholders from the university and government research communities to establish …

Information Security: Zero to 60 in 10 Years

October 24, 2007 | A session at the EDUCAUSE 2007 Annual Conference

The focus on information security at Embry-Riddle Aeronautical University, as in many institutions, has evolved gradually over a number of years. Beginning with what can best be described as ad hoc…

How Ready Are IT Managers for a Crisis?

October 24, 2007

The annual Campus Computing Survey focuses on IT security and crisis management, finding gaps in preparation but fewer attacks on networks. The…

ISUnet Security Enhancement Plan

January 1, 2005

During the fall 2003 and spring 2004 semesters, Illinois State University (like most other higher educational institutions) experienced several major network and email based virus outbreaks that …

Security Policy Resources and Models

April 11, 2007 | A session at the Security 2007

The EDUCAUSE/Internet2 Security Task Force Model Policy Subgroup will survey its model security policy wiki, an inventory of policy samples, organized around 10 industry standard topics. This sessi…

How to Successfully Defend Against IRC Bots, Compromises, and Information Leaks

October 12, 2006 | A session at the EDUCAUSE 2006 Annual Conference

IRC "bots," Trojan horses, rootkits, "zero day" threats, compromised PCs . . . sound familiar? These threats can result in sensitive data exposures, not to mention the hassles o…

Seminar 09F - Effective IT Security Practices PLEASE NOTE: Separate registration and fee is required to attend this seminar.

October 9, 2006 | A session at the EDUCAUSE 2006 Annual Conference

IT security is a critical issue in higher education. This seminar will focus on network security architectures, infrastructure, data security, incident detection, prevention, and response. A framew…

Policy and Regulatory Issues

May 24, 2006 | A session at the Enterprise Technology Conference 2006

This session will focus on information security programs inclusive of policy, risk assessment, operational practices, education, training, and enforcement for the proper handling, preservation, and…