Research Grant Security Compliance: Taking NIST, COBIT, and ISO/IEC Head On

Portland State University is facing a challenge that many research institutions across the country are encountering. Heightened nationwide awareness of and fears about cybersecurity are placing increased compliance requirements around data security in federal and state-funded grants. Realizing PSU would no longer be competitive for many grant dollars in the future, the PSU IT department tackled a security gap analysis based on NIST 800/53 and 171 along with COBIT and ISO/IEC. This session will cover the project from beginning to end, including details about the analysis methodologies used and review of the final report details.

OUTCOMES: Increased awareness of various cybersecurity standards and guidelines * Better understanding of cybersecurity compliance requirements for each individual institution's research activity * Walk away with a NIST gap analysis framework