-
Research
and Publications
Current Issue
March/April 2013
EDUCAUSE ReviewPublications
-
Conferences
and Events
Annual Conference
October 15–18, 2013
Save the date!Events for all Levels and Interests
Whether you're looking for a conference to attend face-to-face to connect with peers, or for an online event for team professional development, see what's upcoming.
-
Career
Development
EDUCAUSE Institute
Leadership/Management Programs
Explore MoreCareer Center
Leadership and Management Programs
EDUCAUSE Institute
Advanced Programs
Project Management
Jump Start Your Career Growth
Explore EDUCAUSE professional development opportunities that match your career aspirations and desired level of time investment through our interactive online guide.
-
Focus Areas
and InitiativesLatest Topics
EDUCAUSE organizes its efforts around three IT Focus Areas
Join These Programs If Your Focus Is
-
Connect
and ContributeFind Others
Get on the Higher Ed IT Map
Employees of EDUCAUSE member institutions and organizations are invited to create individual profiles.
-
About
EDUCAUSE
Filter by type
- Presentations and Seminars [x]
Filter by Presentations
Filter by Library Taxonomy
- Security Risk Assessment and Analysis [x]
- Cybersecurity (5)
- Security Management (5)
- Incident Handling and Response (2)
- Intrusion Detection and Prevention (2)
- Network Security and Applications (2)
- Business Continuity (1)
- Disaster Recovery Planning (1)
- Information Technology Management and Leadership (1)
- Network Vulnerability Assessment (1)
- Planning (1)
- Security Architecture (1)
- Security Awareness (1)
Resources Developed by the Higher Education Information Security Council (HEISC)
- Information Security Governance
- Information Security Governance Assessment Tool
- Information Security Risk Assessment Consultants List
- Information Security Risk Assessment Sample RFPs
- Risk Assessment Tools
- Risk Management Framework
Risk Analysis and Security Evaluation Tools
- Electronic Risk and Requirements Assessment (E-RA)
- CCTA (Central Computer and Telecommunications Agency) Risk Analysis and Management Method (CRAMM)
- Control Objectives for Information and related Technology (COBIT)
- NIST Recommended Security and Privacy Controls for Federal Information Systems and Organizations (SP 800-53)
- NIST's "An Overview of Issues in Testing Intrusion Detection Systems"
- Operationally Critical Threat, Asset, and Vulnerability EvaluationSM (OCTAVE)
- Security Targeting and Analysis of Risks (STAR)
Updated October 2012
Library Items on this Topic
EDUCAUSE Library Items for Security Risk Assessment and Analysis
-
ISAAC (Information Security Awareness, Assessment, and Compliance): A Success Story
-
February 24, 2010
Risk assessment and mitigation are challenging in any environment, but especially in the open and decentralized world of higher education. Texas A&M University developed the ISAAC methodology…
-
Going Beyond Recovery to Continuity: Lessons Learned
-
January 1, 2006
The main campus of The George Washington University is located just a few blocks from the White House. The series of events surrounding 9/11 helped to accelerate advancement of a university-wide …
-
Trends in Malicious Code on the Internet
-
January 1, 2006
The presentation will identify the FBI's role in combating malicious code outbreaks and investigating computer intrusion incidents, as well as the objectives of malware analysis. The malicio…
-
Balancing the Need for Security and Open, Collaborative Networking
-
January 1, 2004
The EDUCAUSE Center for Applied Research (ECAR) study of IT security in higher education portrays an industry that is struggling to secure a culturally open environment against the rising tide of…
-
IT and Internal Auditing: Developing a Collaborative Approach to IT Security
-
January 1, 2003
Monitoring risks associated with IT is a shared institutional responsibility. Between operational responsibilities for promoting strong information systems and independent assessments throughout …
