EDUCAUSE Quarterly Articles and Security Management

Security and ERP Systems are numbers 1 and 2; Infrastructure rises; Change Management, E-Learning, and Staffing move into top ten.

With data from 960 participating institutions, the EDUCAUSE Core Data Service helps campus planners make informed decisions.

A study of ERP security issues produced a checklist that shows institutions what to look for while letting vendors know what campuses consider important.

The reviewer states the "Complete Guide to Security and Privacy Metrics is a good reference book for individuals developing or managing metrics for performance management programs." This book has more than 900 ready-to-use metrics designed to measure the following;

• Compliance with current security and privacy regulations and standards
• Operational resilience of physical, personnel, IT, and operational controls
• Return on investment (ROI) on controls used to manage risk of information and IT assets

Funding IT reemerges as top challenge; Security and Identity/Access Management split as separate issues; Course/Learning Management Systems moves into the top ten.

Security and privacy are not IT issues—they demand a comprehensive, strategic, team approach to find effective solutions.

A journey, not a destination, security work is never done—the challenges just keep coming.

The time and resources needed for proper risk assessment can be mitigated and the benefits magnified by making assessment an ongoing, rule-based process.

Desktop computing, distance education, and ubiquitous computing no longer appear among the top-five, while funding IT continues as top challenge and security continues to grow in importance.

Student exploration of individual security practices yields instructive insights for campus IT environments.