EDUCAUSE Annual Conference 2024
Agenda
Encouraging Security Culture through a Participatory Policy Project

Encouraging Security Culture through a Participatory Policy Project

Our InfoSec governance mantras are, “Keep Information Security Simple” (KISS), and “communicate, don’t alienate.” Join us to learn about turning policies and standards into a channel for culture change at an R1 university and medical school. In a recent multiyear project, we tapped into our university’s collaborative spirit, working with multiple task forces and committees of subject matter experts to overhaul and expand the entire Information Security Policy library. Their participation improved the final product and encouraged a widespread sense of ownership. We further promoted a security culture by using a friendly, guidance-based approach to communicating the policies and leveraging trainings and a monthly newsletter to enculturate policy objectives.

Presenters

Christina Pomianek-Smith

Information Security Analyst, Washington University in St. Louis
David Puzder

Information Security Analyst, Washington University in St. Louis
Madeline Quigley

Cybersecurity Awareness and Culture Specialist, Washington University in St. Louis

Resources & Downloads

Encouraging Security Culture Through a Participatory Policy Project Handout

Updated on 2/1/2025
Encouraging Security Culture Through a Participatory Policy Project Presentation

Updated on 2/1/2025

Encouraging Security Culture through a Participatory Policy Project

Presenters

Christina Pomianek-Smith

David Puzder

Madeline Quigley

Resources & Downloads

Encouraging Security Culture Through a Participatory Policy Project Handout

Encouraging Security Culture Through a Participatory Policy Project Presentation