Integrating Information Security and Privacy: Two Approaches

Privacy and information security are inextricably intertwined but not always in agreement with each other. The University of Washington and the University of California have taken different approaches to balancing the two. An integrated approach to information security and privacy is essential when technology is convenient, data analytics are in high demand, data breaches will never stop, and compliance requirements are burdensome for higher education. In this session we'll contrast our approaches to governance and day-to-day operations, how each helps to resolve tensions between privacy and information security, and invite participants to share their own experiences to explore how our approaches can support them.

OUTCOMES: Contemplate balancing information security and privacy from governance through day-to-day operations * Recognize the role of risk in balancing privacy and information security * Evaluate important topics to discuss with an information security and privacy board