Do They Measure Up? Assessing the Security Posture of Third-Party Service Providers

Friday, October 21, 2011 | 10:30AM–11:20AM | Meeting Room 113B/C
Session Type: E11
Institutions are increasingly gaining efficiencies and reducing costs by using third parties to host institution-owned data. How do we assess incremental risk of this approach? How can we ensure adequate security practices exist before finalizing contractual agreements? This session will introduce a general strategy and several tools for prequalifying and auditing third parties.

Presenters

  • David Escalante

    Director of Computer Security, Boston College

  • Shirley Payne

    AVP for Information Security, Policy & Records (Retired), University of Virginia

Resources & Downloads

http://educause.mediasite.com/mediasite/Viewer/?peid=6ddd29d7bdbe4326961b302513a5dcc31d&autoStart=false

Podcast of Session
17 MB, MP3 Audio
Uploaded on 09/08/2013
Audio/Video File (mp4) of Session
79 MB, Video
Uploaded on 09/08/2013
2011 EDUCAUSE - Do They Measure Up.pdf
1 MB, PDF
Uploaded on 12/14/2011