Managing Information Security with Decentralized IT Operations

Tuesday, May 02 | 3:15PM–4:15PM | Colorado Ballroom IJ, Lower Level 2
Session Type: Breakout Session
Delivery Format: Industry and Campus Solutions
Decentralized IT is a common reality among institutions of higher education. Rather than just accept the many ambiguities and risks that can result from decentralized IT, the George Washington University decided to do something about it. Working with a trusted service provider, GWU sought to understand security risks, remediate vulnerabilities, mitigate risks, and improve overall security governance. This presentation will provide an overview of decentralized IT challenges and how the GWU/GuidePoint Security team worked to overcome them.

Gain tactics for improving security governance in decentralized IT environments * Get strategies for risk identification and mitigation * Design a decentralized IT security assessment methodology


  • Andrew Johnson

    Practice Director, Threat & Attack Simulation, GuidePoint Security LLC
  • Brian Markham

    Chief Information Security Officer, EAB