About HEISC

The Cybersecurity Program provides resources and events that are created by, and for, the higher ed information security, cybersecurity, and privacy communities.

The program is informed by our EDUCAUSE member-led Higher Education Information Security Council (HEISC), an organized, engaged, passionate, and experienced team of higher education information security and privacy professionals.

HEISC helps higher ed institutions improve information security governance, compliance, data protection, and privacy programs. Established in July 2000 to provide coordination for higher education, HEISC accomplishes its work through volunteer groups supported by EDUCAUSE staff, as well as collaborations with other organizations that address information security and privacy in higher education.

HEISC members develop and promote information security leadership, awareness, and understanding; effective practices and policies; and guidance for the protection of critical data, IT assets, and infrastructures. Read the HEISC charter for more information.


Major Areas of Focus


HEISC Advisory Committee

The HEISC Advisory Committee is responsible for ensuring progress in meeting the strategic priorities of the council. To accomplish this, the committee creates and monitors working groups and sponsors other activities, annually reviews the strategic priorities to see if changes are needed, and annually sets objectives for the working groups that will produce tangible outcomes furthering the goals of the council.


  • Jon Allen

    Jon Allen
    Associate Vice President CIO & CISO, Baylor University
    HECVAT Users Community Group Co-Chair
  • Nichole Arbino

    Nichole Arbino
    Communities Program Manager, EDUCAUSE
    EDUCAUSE Staff Liaison
  • Cristina Blanton

    Cristina Blanton
    Chief Privacy & Data Protection Officer, University of Texas System
    Higher Education Chief Privacy Officers Community Group Co-Chair
  • Patricia Clay

    Patricia Clay
    Chief Information Officer, Hudson County Community College
    HEISC Co-Chair
  • Lanita Collette

    Lanita Collette
    Deputy CIO, CISO, The University of Arizona
    HEISC Co-Chair
  • Kristen Dietiker

    Kristen Dietiker
    Chief Information Security Officer, Santa Clara University
    Awareness and Education Community Group Co-Chair
  • Holly Drake

    Holly Drake
    Chief Privacy Officer, The Ohio State University
    Higher Education Chief Privacy Officers Community Group Co-Chair
  • Nadim El-Khoury

    Nadim El-Khoury
    Director, Networks, Systems, Infrastructure, and Information Security Officer, Springfield College
    800-171 Compliance Community Group Co-Chair
  • Charlie Escue

    Charlie Escue
    Extended Information Security Manager, Indiana University
    HECVAT Users Community Group Co-Chair
  • Scott Fendley

    Scott Fendley
    Information Security Engineer/Architect, University of Alabama at Birmingham
    Technologies, Operations, and Practices Community Group Co-Chair
  • Jay Gallman

    Jay Gallman
    Security IT Analyst, Duke University
    800-171 Compliance Community Group Co-Chair
  • Susan Grajek

    Susan Grajek
    Vice President, Communities and Research, EDUCAUSE
    EDUCAUSE Staff Liaison
  • Sean Hagan

    Sean Hagan
    Chief Information Security Officer, University of Alaska Fairbanks
    Governance, Risk, and Compliance Community Group Co-Chair
  • Harry Hoffman

    Harry Hoffman
    AVP/CISO, Northeastern University
    800-171 Compliance Community Group Co-Chair
  • Jonathan Kimmitt

    Jonathan Kimmitt
    Chief Information Security Officer, University of Tulsa
    Privacy Community Group Co-Chair
  • Bryan Leber
    Vice President of Professional Services, Fischer Identity LLC
  • Nick Lewis

    Nick Lewis
    Program Manager for Security and Identity, Internet2
    Internet2 Liaison
  • Kim Milford

    Kim Milford
    REN-ISAC Executive Director, Indiana University
    REN-ISAC Liaison
  • Blake Penn

    Blake Penn
    Information Security Policy & Compliance Manager, Georgia Institute of Technology
    Governance, Risk, and Compliance Community Group Co-Chair
  • Ken Ries

    Ken Ries
    Chief Information Security Officer, University of Wisconsin-River Falls
    Awareness and Education Community Group Co-Chair
  • Peter Romness

    Peter Romness
    Cybersecurity Principal - Public Sector CTO Office, Cisco Systems, Inc.
  • Svetla Sytch

    Svetla Sytch
    Assistant Director of Privacy and IT Policy, University of Michigan-Ann Arbor
    Privacy Community Group Co-Chair
  • Andrew Weisskopf

    Andrew Weisskopf
    Chief Information Security Officer, University of Delaware
    Cybersecurity and Privacy Professionals Conference Program Committee Chair
  • Ann West

    Ann West
    Associate Vice President, Trust and Identity, Internet2
    Internet2/InCommon Liaison
  • Christine Whalley

    Christine Whalley
    Chief Information Security Officer, Amherst College
    Cybersecurity and Privacy Professionals Conference Program Committee Vice Chair