Regulated Information Security Compliance Community Group

The Regulated Information Security Compliance (RISC) Community Group (CG) through EDUCAUSE is a collaborative platform for professionals dedicated to navigating the complex landscape of information security and regulatory compliance. This group brings together experts, practitioners, and stakeholders supporting institutions of higher education. Our mission is to provide a supportive environment for sharing knowledge, best practices, and resources related to information security to ensure compliance with evolving regulations, standards, and frameworks that include, but are not limited to:

  • Gramm-Leach-Bliley Act (GLBA)
  • Cybersecurity Maturity Model Certification (CMMC)
  • Healthcare Insurance Portability and Accountability Act (HIPAA)
  • Payment Card Industry Data Security Standard (PCI-DSS)
  • Federal Acquisition Regulations (FAR)
  • Defense Federal Acquisition Regulation Supplement (DFARS)
  • National Security Presidential Memorandum-33 (NSPM-33)
  • Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA)
  • National Institution of Standards and Technology (NIST) Standard Publications (SPs)

With a focus on operations and implementation of information security controls and best practices through regular discussions, working groups, and networking channels, RISC member will gain insights into information security risk management, data protection strategies, audit preparation, and cybersecurity frameworks and best practices. Whether you are looking to stay ahead of compliance changes, enhance your institution's security posture or connect with like-minded professionals, this groups serves as a hub for collective learning and professional development in the information security and compliance domains. Members are encouraged to raise topics for discussion by posting a thread utilizing the "discussion" tab. Topics may also be discussed during the monthly meeting. See the "events" tab for monthly meeting details. The RISC-CG encourages collaboration with other EDUCAUSE CGs where topics of interest may overlap. The RISC-CG also collaborates heavily with the Regulated Research Community of Practice (RRCoP), where RISC-CG members may also join the HigherEdCUI Slack Space.

Join us to be part of a community that prioritizes both information security and compliance in today's digital age.

Group Leaders


Louis Daher

University of Michigan-Ann Arbor
Committee Member: 2023-Present

Wendy Epley

The University of Arizona
Committee Member: 2023-Present

Ron Loneker

Saint Elizabeth University
Committee Member: 2024-Present

Participate in This Group

To join, leave, and engage in this community, visit EDUCAUSE Connect.

VISIT EDUCAUSE Connect

Previous Community Group Archives

As planned with the launch of EDUCAUSE Connect, the CG discussion archives from our previous email list system have been decommissioned and are no longer accessible. CG discussions that have been posted to EDUCAUSE Connect since its launch in the fall of 2021 are available on the platform. For additional information, visit the CG Discussion Archives Frequently Asked Questions.

Participation Guidelines

All participants must follow the Participation Guidelines.

If you have questions about this Community Group, please contact us.