Security Management, Incident Handling and Response, and Security Awareness

As with many institutional endeavors, successful practice in cybersecurity requires that the players (individuals and teams) operate in the context of a community that faces similar challenges, objectives, and goals. Several community-based organizations support higher education and research institutions in their cybersecurity endeavors.

The EDUCAUSE/Internet2 Security Task Force coordinates community work in the areas of governance, policy, data privacy and security, effective practice, awareness, and professional development. As an independent organization aligned closely with EDUCAUSE and Internet2, the REN-ISAC has primary focus on supporting situational awareness and operational protection and response, through the sharing of actionable information. This presentation will highlight the value of institutional participation in security communities and describe in detail the REN-ISAC organization and community.

"No matter how robust your firewall, trained faculty and staff are your first line of defense against system breaches."

Successful implementation of an effective information, data, and system "security blanket" for higher education institutions requires recognition of and action upon the cultural, political, and regulatory fronts. Data stewards; policy makers; central and departmental IT staff; and students, faculties, and staff members all have a role to play. This bulletin is based on the research of current IT security literature and on interviews with representatives from multiple campuses. It offers a broad survey of the current nontechnical issues facing higher education as it attempts to secure information assets and systems.

This research bulletin summarizes how Emory University used the results of a security survey of higher education institutions to make important, peer-informed decisions on how to secure and protect its computing environment. It includes an analysis of the statistical information they gathered and details about the security initiatives they implemented after compiling and reviewing survey results.

At many higher education institutions, casual staffing arrangements are no longer adequate to handle the myriad technical, procedural, and cultural issues surrounding information technology security. For ECAR's 2003 study, "Information Technology Security: Governance, Strategy, and Practice in Higher Education," researchers conducted intensive telephone interviews with more than 30 IT and functional executives, managers, and security officers at more than 20 selected EDUCAUSE institutions. This research bulletin explores, in depth, the issue of IT staffing as reflected by several chief information officers and IT security officers who participated in the ECAR study.

Despite our best efforts, security incidents will occur. Whether due to malice, carelessness, a new virus, or a determined hacker, CIO's and their staff will be faced with the need to carry out damage control. Our guests for this EDUCAUSE Live! can say (unfortunately), "Been there, done that!" They will review their hard-won lessons for dealing with a concerned user community, speaking with the press, engaging with law enforcement, and keeping the response team focused.