Mark Bruhn
Peer Assessment Engagement Manager,
Indiana University
Implementing a System-Wide Risk Mitigation Policy
Friday, October 30, 2015 | 10:10AM–11:00AM | Meeting Room 130-131
Session Type:
Professional Development
In 2013, Indiana University approved a policy to reduce cyber-risk by utilizing secure data facilities, reducing the overall number of servers, and ensuring all servers are sufficiently maintained and secured. Before enacting the policy, extensive discussion occurred with deans, faculty, and IT staff, shaping the final version and implementation.
Outcomes: Learn about IU's risk-mitigation policy and how a similar policy might be implemented at your institution * Understand the challenges this policy presented and how to avoid or resolve them * Explore the successes of this policy
Presenters
-
-
Charlie Escue
Information Security Manager, Indiana University -
Todd Herring
Membership Services Director, REN-ISAC, Indiana University Bloomington -
Kim Milford
Executive Strategic Consultant, Vantage Technology Consulting Group
Resources & Downloads
Narrative instrument, risk mitigation planning
135 KB, Microsoft Office Document
Uploaded on
Inventory, RA instrument
79 KB, Microsoft Office Spreadsheet
Uploaded on
Companion instrument, optional; compliance ...
177 KB, Microsoft Office Spreadsheet
Uploaded on
Implementing_a_system-wide_risk_mitigation_p ...
3 MB, PDF
Uploaded on
Activity_Directions.pdf
93 KB, PDF
Uploaded on
Activity_Answer_Sheet.pdf
15 KB, PDF
Uploaded on