This session will provide information security professionals with information about the cases, laws, and regulations that directly impact information practices at their institutions. The presenters will use real-world examples to highlight what happens when legal requirements are not met. They will also discuss the expansion of responsibilities for security professionals in the areas of policy development, policy enforcement, acceptable use topics (e.g., cyberbullying, copyright infringement), privacy advocacy, legal and liability matters, and contractual or regulatory compliance.
Information Security & Privacy Director, Montgomery College
Director of Cybersecurity and IT GRC Programs, EDUCAUSE