About HEISC

The Cybersecurity Program provides resources and events that are created by, and for, the higher ed information security, cybersecurity, and privacy communities.

The program is informed by our EDUCAUSE member-led Higher Education Information Security Council (HEISC), an organized, engaged, passionate, and experienced team of higher education information security and privacy professionals.

HEISC helps higher ed institutions improve information security governance, compliance, data protection, and privacy programs. Established in July 2000 to provide coordination for higher education, HEISC accomplishes its work through volunteer groups supported by EDUCAUSE staff, as well as collaborations with other organizations that address information security and privacy in higher education.

HEISC members develop and promote information security leadership, awareness, and understanding; effective practices and policies; and guidance for the protection of critical data, IT assets, and infrastructures. Read the HEISC charter for more information.

Major Areas of Focus

• Coordinate the Security Professionals Conference and other professional learning events.
• Revise and refine the Cybersecurity and Privacy Guide, which provides effective practices and timely guidance on hot topics for colleges and universities.
• Develop and promote tools to help campuses improve their cybersecurity and privacy programs.
• Foster communication and networking within the community.
• Provide cybersecurity and privacy expertise on issues of public policy affecting higher education.

HEISC Advisory Committee

The HEISC Advisory Committee is responsible for ensuring progress in meeting the strategic priorities of the council. To accomplish this, the committee creates and monitors working groups and sponsors other activities, annually reviews the strategic priorities to see if changes are needed, and annually sets objectives for the working groups that will produce tangible outcomes furthering the goals of the council.

• 
  Jon Allen
  Associate Vice President CIO & CISO, Baylor University
  HECVAT Users Community Group Co-Chair
• 
  Nichole Arbino
  Communities Program Manager, EDUCAUSE
  EDUCAUSE Staff Liaison
• 
  Cristina Blanton
  Chief Privacy & Data Protection Officer, University of Texas System
  Higher Education Chief Privacy Officers Community Group Co-Chair
• 
  Chris Cashmere
  Risk, Compliance, and Privacy Manager, University of Nebraska
  Privacy Community Group Co-Chair
• 
  Louis Daher
  Data Security Analyst - Michigan Engineering, University of Michigan-Ann Arbor
  800-171 Compliance Community Group Co-Chair
• 
  Lanita Collette
  Deputy CIO, CISO, The University of Arizona
  HEISC Co-Chair
• 
  Wendy Epley
  Principal Analyst, Information Security, The University of Arizona
  800-171 Compliance Community Group Co-Chair
• 
  Charlie Escue
  Extended Information Security Manager, Indiana University
  HECVAT Users Community Group Co-Chair
• 
  Jay Gallman
  Security IT Analyst, Duke University
  800-171 Compliance Community Group Co-Chair
• 
  Isaac Galvan
  Lead Cybersecurity Training Specialist, University of Illinois at Urbana-Champaign
  Awareness and Education Community Group Co-Chair
• 
  Susan Grajek
  Vice President, Communities and Research, EDUCAUSE
  EDUCAUSE Staff Liaison
• 
  Chris Gregg
  CISO, University of St. Thomas
  Higher Education Chief Information Security Officers Community Group Co-Chair
• 
  Sean Hagan
  Chief Information Security Officer, University of Alaska Fairbanks
  Governance, Risk, and Compliance Community Group Co-Chair
• 
  Nick Lewis
  Program Manager for Security and Identity, Internet2
  Internet2 Liaison
• Alex Lindstrom
  Vendor Services Risk & Program Manager, Stanford University
  Governance, Risk, and Compliance Community Group Co-Chair
• 
  Alexander Magid
  Information Privacy and Compliance Analyst, DPO, Clark University
• 
  Ann Nagel
  University Privacy Officer, University of Washington
  Higher Education Chief Privacy Officers Community Group Co-Chair
• 
  Mark Napier
  Deputy Dir IT/ Chief Info Privacy and Security Officer, Indiana University Bloomington
  Awareness and Education Community Group Co-Chair
• 
  Anthony Newman
  Executive Director, REN-ISAC
• 
  Pegah Parsi
  Chief Privacy Officer, University of California San Diego
  HEISC Co-Chair
• 
  Joseph Potchanant
  Director, Cybersecurity and Privacy Program, EDUCAUSE
  EDUCAUSE Staff Liaison
• 
  Masood Sidiqyar
  Sr. Director, Information Security, Vanderbilt University
  Governance, Risk, and Compliance Community Group Co-Chair
• 
  Svetla Sytch
  Assistant Director of Privacy and IT Policy, University of Michigan-Ann Arbor
  Privacy Community Group Co-Chair
• 
  John Virden
  AVP, Chief Information Security Officer, Miami University
  Higher Education Chief Information Security Officers Community Group Co-Chair
• 
  Andrew Weisskopf
  Chief Information Security Officer, University of Delaware
  Technologies, Operations, and Practices Community Group Co-Chair
• 
  Ann West
  Associate Vice President, Trust and Identity, Internet2
  Internet2/InCommon Liaison
• 
  Christine Whalley
  Chief Information Security Officer, Amherst College
  Cybersecurity and Privacy Professionals Conference Program Committee Chair