Information security risks at colleges and universities present challenging legal, policy, technical, and operational issues. According to a recent study by the EDUCAUSE Center for Applied Research (ECAR), security incidents have resulted in compromises of personal information, leading to bad publicity and the potential for identity theft. Steps to protect sensitive data include establishing an information security risk management program, data classification policies, clearly defined roles and responsibilities, awareness programs, and technology solutions. This seminar will outline a blueprint for protecting sensitive data according to the EDUCAUSE/Internet2 Security Task Force.
Director of Computer Security, Boston College
Associate Director, Information Security Office, Yale University