Policy and Security

EDUCAUSE Policy tracks and analyzes the issues likely to have the greatest impact on higher education IT and works with members to inform public and campus policy development. The Cybersecurity Initiative aims to improve information security, data protection, and privacy programs across the higher education sector.


Helping you to better understand how changing public policies will affect IT in higher education and advocating for the best interests of the community.

Cybersecurity Initiative

Working to provide effective security practices and programs through volunteers and focused partnerships with government, industry, and other academic organizations.

Programs and Resources

Public Policy

Monitor and analyze policy issues affecting IT in higher education and advocate on behalf of the community.



Effective practices, case studies, toolkits, and news from HEISC.


IT Governance, Risk, and Compliance

Resources to help define and implement IT GRC activities.


Security Professionals Conference

Security Professionals Conference 2017

The annual Security Professionals Conference is the premier forum for connecting information security professionals, security analysts, IT staff, privacy officers, C-level executives, and others from across the higher education community. Plan to join us for Security 2017, May 1–3 in Denver, Colorado. Learn More >

News and Events

Lessons Learned from 2016’s Major Cybersecurity Incidents
by Erin Feldman | December 27, 2016

Think Congress for Higher Ed and IT Policy in 2017
by Jarret Cummings | December 15, 2016

Fast-Forward: Bug Bounties Abound
by Chris Markman | December 15, 2016

New Regulation, Electronic Filing System for DMCA Designated Agents
by Jennifer Ortega and Jarret Cummings | December 12, 2016

January 2017: Keep What’s Private, Private
by Patricia Clay | November 29, 2016