Advance Your InfoSec Career

Last reviewed: March 2017

Which career development activities are right for your information security career?

We have collected a list of career development resources intended for all security professionals in higher education, including Chief Information Security Officers (CISOs). Recommendations are provided by members of the Higher Education Information Security Council (HEISC).

Getting Started
  1. Use the EDUCAUSE Member Directory to strengthen your personal network. Create a profile and connect with professionals according to functional role (e.g., CISO), area of interest (e.g., Cybersecurity), or location.
  2. Join the Security Discussion list or another EDUCAUSE constituent group (e.g., IDM, CIO, ITCOMM).
  3. Join the REN-ISAC (if appropriate).
  4. Join a regional security group.
  5. Visit the Toolkit for New CISOs for additional resources.

Need more help getting started? Please contact us and we'll try to help!

Staying Current

  1. Read higher education IT-related publications. Visit the Toolkit for New CISOs for some suggestions. 
  2. Attend the Security Professionals Conference each spring
  3. Attend monthly EDUCAUSE Live! webinars (free!)
  4. Attend monthly InCommon IAM Online webinars (free!)
  5. Attend REN-ISAC TechBurst webinars
  6. Attend other EDUCAUSE events.
  7. Attend the Internet2 Global SummitTechnology Exchange, or workshops.
  8. Attend the REN-ISAC Member Meeting (Note: You must be an active representative of a member institution.)
  9. Attend other higher education information security events (e.g., local/regional conferences) or attend non-higher ed information security events (e.g., RSA, Black Hat, ShmooCon, DerbyCon, DEF CON, local Security BSides).
  10. Follow HEISC on TwitterPinterest, and YouTube for the latest news and resources.

Career Development: Next Steps

  1. Research information security and privacy training and certification options.
  2. Volunteer for a HEISC Working Group. Or consider volunteering for an ECAR Working Group if you are looking for topics beyond information security.
  3. Volunteer to serve on the Security Professionals Conference Program Committee. Or learn about other formal and informal EDUCAUSE volunteer opportunities.
  4. Volunteer for conference-related opportunities at the Security Professionals Conference. Sign up as an adjunct proposal reviewer, convene a BOF, facilitate a lunchtime roundtable discussion, or convene a track session.
  5. Write or co-author an EDUCAUSE Review article or Security Matters column guest blog, Case Study Submissions, or ECAR research bulletin. Please contact us to discuss your options.
  6. Submit a proposal for a seminar or track session at an EDUCAUSE conference or event.
  7. Request a mentor or volunteer as a mentor. View our Mentoring Toolkit for additional information and resources.
  8. Co-chair a HEISC Working Group or chair the Security Professionals Conference Program Committee. Also consider co-chairing an ECAR Working Group or an EDUCAUSE Member Committee.
  9. Take a project management course, available through EDUCAUSE and the Project Management Institute. 
  10. Research EDUCAUSE Institute programs for future career considerations. Options include the New IT Managers Program, Management Program, Leadership Program, Leading Change Institute, and discussion-based roundtables.
  11. Identify opportunities to work in a consulting or advisory role with a nearby institution. Or consider volunteering your information security skills for a local non-profit organization.



Questions or comments? Contact us.

Except where otherwise noted, this work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License (CC BY-NC-SA 4.0).