Cybersecurity Initiative

12 Months of Ready-Made Security Awareness Communications You Can Use in 2017

Use our Annual Campus Security Awareness Campaign materials to create a steady stream of privacy and security awareness info & helpful resources for students faculty & staff. Content can be adapted for your institution's needs, whether you promote topics monthly or quarterly.

The Cybersecurity Initiative is led by the Higher Education Information Security Council (HEISC) whose mission is to support higher education institutions as they improve information security governance, compliance, data protection, and privacy programs.
Learn more >


EDUCAUSE Extended Online Event

August 9 (12-3:45 pm EDT): Metrics Mania! Using Metrics to Bolster Your Higher Education Information Security Program

  • Registration is now available. Note: This extended online event requires a registration fee.

HEISC Webinars and Online Events

April 11: Phishing Programs: Chapter 1 – Getting Your Campus Ready for a Phishing Awareness CampaignWebinar recording, slides, and chat transcript

May 30 (4-5 pm EDT): From Art to Science: How Risk Can Transform Your Information Security ProgramWebinar recording, slides, and chat transcript

Summer 2017: Phishing Programs: Chapters 2 & 3

Note: No registration is required. Recordings, slides, and chat transcripts will be posted here after each webinar.

Security Professionals Conference

The annual Security Professionals Conference is the premier forum for connecting information security professionals, security analysts, IT staff, privacy officers, C-level executives, and others from across the higher education community. Plan to join us April 10–12, 2018 in Baltimore, Maryland. And check back in the fall when the 2018 Call for Proposals (CFP) will be open. Learn More >


Information Security Guide

The Information Security Guide: Effective Practices and Solutions for Higher Education is a key publication for the higher education security community, maintained by volunteers.

Assessment Tools

Evaluate the maturity of your information security program using this self-assessment tool created by HEISC volunteers. If you are evaluating cloud service providers, download our Higher Education Cloud Vendor Assessment Tool (HECVAT) recently developed by community members. EDUCAUSE has also developed an IT Risk Register.

New to the CISO Role?

The Toolkit for New CISOs provides recommended resources for those new to their role in higher education.

Security Matters Guest Blogs

Find the latest blogs related to information security, privacy, and risk in higher ed in our EDUCAUSE Review blog column, Security Matters.

Get Involved with HEISC

Volunteer to write an article or guest blog, serve on a working group, or join the program committee. We're always searching for innovative practices and projects from the community, so please share your ideas with us. Consider connecting with the HEISC community today and make an impact within your profession. Learn More >

Security Discussion Group

Participate in community discussions about information security in higher education.

Join Group

Security and Data Privacy Awareness

Educating students, faculty, and staff is easier with ready-made planning and communication tools from these annual awareness efforts: