Web Seminars Contributed by EDUCAUSE, Incident Handling and Response, and EDUCAUSE Live!

The presentation will identify the FBI's role in combating malicious code outbreaks and investigating computer intrusion incidents, as well as the objectives of malware analysis. The malicious code cycle of harvesting, harnessing, and executing will be explained and the status of universities as malware targets will be discussed. Finally, the presentation will offer synopses of successes, future challenges, and how organizations can assist with investigations.

The EDUCAUSE Center for Applied Research (ECAR) study of IT security in higher education portrays an industry that is struggling to secure a culturally open environment against the rising tide of threats posed both from within and without higher education. This session will summarize key survey findings regarding IT security technologies implemented by higher education institutions. It will also introduce a new Effective Security Practices Guide developed by the EDUCAUSE/Internet2 Computer and Network Security Task Force that contains resources on network and host vulnerability assessment, security architecture design, network and host security implementation, virus and intrusion detection, incident handling and response, and encryption and authentication.

Despite our best efforts, security incidents will occur. Whether due to malice, carelessness, a new virus, or a determined hacker, CIO's and their staff will be faced with the need to carry out damage control. Our guests for this EDUCAUSE Live! can say (unfortunately), "Been there, done that!" They will review their hard-won lessons for dealing with a concerned user community, speaking with the press, engaging with law enforcement, and keeping the response team focused.