Search| Browse| Contribute
Library| Blogs| Jobs| Podcasts| Wikis| Feeds
Page Location:
Home > Browse > Cybersecurity > Cybersecurity Policy and Security Planning (21 records)
Alternate ViewsRSS

Cybersecurity Policy and Security Planning

Recent resources tagged with Cybersecurity Policy and Security Planning.

EDUCAUSE Live! Podcast: What Price Insularity? Reflections About Computer Security Failings.
Created by Gerry Bayne (EDUCAUSE) on January 07, 2008

In this EDUCAUSE Live! podcast, join host, Steve Worona, for the topic "What Price Insularity? Reflections About Computer Security Failings". Steve's guest is Fred Schneider, Professor of Computer Science at Cornell University.

Presentation slides for this audio can be found here.

| | | | | | |
gbayne's blog  Login to post comments  Read more  1 attachment  Send to Friend  479 reads

IT Security Essential Body of Knowledge: A Competency and Functional Framework for IT Security Workforce Development
Added by the EDUCAUSE Librarian
Title:IT Security Essential Body of Knowledge: A Competency and Functional Framework for IT Security Workforce Development (ID: LIVE0722)
Author(s):Brenda Oldfield (United States Department of Homeland Security)
Origin:EDUCAUSE Live!, Web Seminars Contributed by EDUCAUSE (11/14/2007)
Type:Presentations/Speeches
Abstract:

The Department of Homeland Security's National Cyber Security Division worked with subject matter experts from government, the private sector, and academia to develop an umbrella framework that establishes a national baseline representing the essential knowledge and skills IT security practitioners must have to perform their jobs. The IT Security EBK builds directly on established work and is not intended to represent a standard, directive, or policy by DHS. Instead, it further clarifies key IT security terms and concepts for well-defined competencies, identifies notional security roles, and defines primary functional perspectives to help advance the IT security training and certification landscape as we strive to ensure that we have the most qualified and appropriately trained IT security workforce possible.

View this resource:
http://www.educause.edu/ir/library/powerpoint/LIVE0722.ppt
http://www-cdn.educause.edu/ir/library/multimedia/LIVE0722.mp3Session Audio
http://www.educause.edu/live0722Session Details
| | | | | |
Login to post comments  Send to a Friend  677 reads

Tune In Nov. 14: Free Web Seminar on IT Security Essential Body of Knowledge for Workforce Development
Created by Valerie M. Vogel (EDUCAUSE) on November 08, 2007

EDUCAUSE Live!The Department of Homeland Security's National Cyber Security Division worked with subject matter experts from government, the private sector, and academia to develop an umbrella framework that establishes a national baseline representing the essential knowledge and skills IT security practitioners must have to perform their jobs. The IT Security EBK builds directly on established work and is not intended to represent a standard, directive, or policy by DHS. Instead, it further clarifies key IT security terms and concepts for well-defined competencies, identifies notional security roles, and defines primary functional perspectives to help advance the IT security training and certification landscape as we strive to ensure that we have the most qualified and appropriately trained IT security workforce possible.

| | | | | | |
vvogel's blog  Login to post comments  Read more  Send to Friend  357 reads

Tune In Nov. 14: Free Web Seminar on IT Security Essential Body of Knowledge for Workforce Development
Created by Colleen Luckett (EDUCAUSE) on November 07, 2007

ELIVE logoThe Department of Homeland Security's National Cyber Security Division worked with subject matter experts from government, the private sector, and academia to develop an umbrella framework that establishes a national baseline representing the essential knowledge and skills IT security practitioners must have to perform their jobs. The IT Security EBK builds directly on established work and is not intended to represent a standard, directive, or policy by DHS. Instead, it further clarifies key IT security terms and concepts for well-defined competencies, identifies notional security roles, and defines primary functional perspectives to help advance the IT security training and certification landscape as we strive to ensure that we have the most qualified and appropriately trained IT security workforce possible.

| | | | | | |
cluckett's blog  Login to post comments  Read more  Send to Friend  586 reads

Information Technology (IT) Security Essential Body of Knowledge (EBK): A Competency and Functional Framework for IT Security Workforce Development
Added by the EDUCAUSE Librarian
Title:Information Technology (IT) Security Essential Body of Knowledge (EBK): A Competency and Functional Framework for IT Security Workforce Development (ID: CSD5182)
Origin:Contributed by Organizations or Campuses (10/03/2007)
Type:Government Documents, Laws, Testimonies or Reports
Abstract:

This federal register notice informs the public and interested stakeholders that the Department of Homeland Security (DHS) is making available for public review and comment ``Information Technology (IT) Security Essential Body of Knowledge (EBK): A Competency and Functional Framework for IT Security Workforce Development.'' This framework is intended to assist the public, private, and academic sectors with strategic IT security workforce development initiatives including professional development, training and education. The EBK is not an additional set of DHS guidelines, and it is not intended to represent a standard, directive, or policy by DHS. Instead, it further clarifies key IT security terms and concepts for well-defined competencies, identifies notional security roles, defines four primary functional perspectives, and establishes an IT Security Role, Competency, and Functional Matrix.

View this resource:
http://a257.g.akamaitech.net/7/257/2422/01jan20071800/edocket.access.gpo.gov/2007/E7-19566.htmFederal Register
[Off site]
http://a257.g.akamaitech.net/7/257/2422/01jan20071800/edocket.access.gpo.gov/2007/pdf/E7-19566.pdfFederal Register
[Off site]
http://www.us-cert.gov/ITSecurityEBK/US-CERT
[Off site]
| | | | | | |
Login to post comments  Send to a Friend  3539 reads

Guide for Developing Performance Metrics for Information Security: Recommendations of the National Institute of Standards and Technology
Added by the EDUCAUSE Librarian
Title:Guide for Developing Performance Metrics for Information Security: Recommendations of the National Institute of Standards and Technology (ID: CSD5073)
Author(s):Alicia Clay-Jones (National Institute of Standards and Technology), Anothony Brown (National Institute of Standards and Technology), Elizabeth Chew (National Institute of Standards and Technology), Joan Hash (National Institute of Standards and Technology), and Nadya Bartol (National Institute of Standards and Technology)
Origin:Contributed by Organizations or Campuses (05/19/2006)
Type:Government Documents, Laws, Testimonies or Reports
Abstract:

This publication focuses on developing and implementing information security metrics for an information security program. The processes and methodologies described in this guidance link information security performance to agency performance by leveraging agency-level strategic planning processes. The performance metrics developed according to this guide will enhance the ability of agencies to respond to a variety of federal government mandates and initiatives, including the Federal Information Security Management Act (FISMA) and the President's Management Agenda (PMA).

View this resource:
http://csrc.nist.gov/publications/drafts/draft-sp800-80-ipd.pdf[Off site]
| | |
Login to post comments  Read more  Send to a Friend  3358 reads

New Resource Page on PCI DSS (Payment Card Industry Data Security Standard)
Created by Valerie M. Vogel (EDUCAUSE) on June 15, 2007

Explore the new PCI DSS Resource Page. View Community Resources (under the "Other" tab) or contribute your own resources.

| | | |
vvogel's blog  Login to post comments  Send to Friend  3415 reads

The Impact of Homeland Security Issues on Higher Education
Added by the EDUCAUSE Librarian
Title:The Impact of Homeland Security Issues on Higher Education (ID: MAC07033)
Author(s):Darren Lacey (The Johns Hopkins University), Joy R. Hughes (George Mason University), Michael Greenberger (University of Maryland, Baltimore), and Steven J. Healy (Princeton University)
Origin:Presented at Mid-Atlantic Regional Conferences (01/19/2007)
Type:Presentations/Speeches
Abstract:Homeland security issues increasingly shape the national political agenda. IT professionals responding to unprecedented demands for unified and robust information systems on campuses are also constrained by compliance with federal and local mandates. Additionally, institutional safety and security improvements require cultural change to be effective. For some, these demands are simply a reflection of a changed world. For others, they conflict with the academy's core values of openness, freedom, privacy, and autonomy. A panel of experts from higher education and the intelligence and law enforcement communities will explore the implications of the homeland security agenda for IT organizations in higher education.
View this resource:
http://www.gmu.edu/facstaff/policy/newpolicy/2221adm.htmlGeorge Mason Employee Background Check Policy
[Off site]
http://www.educause.edu/eq/eqm06/eqm0648.aspLearning the Hard Way: The realities of 9/11 prompted strategic improvements in Mason's emergency response.
http://connect.educause.edu/blog/llarsen/educause_mid_atlantic_regional_conference_2007_summary_the_impact_of_homeland_security_issues_on_higher_education/1Summary of Session
| | |
Login to post comments  Send to a Friend  1871 reads

A Unified Approach to Information Security Compliance
Added by the EDUCAUSE Librarian
Title:A Unified Approach to Information Security Compliance (ID: ERM0653)
Author(s):M. Peter Adler (Adler InfoSec & Privacy Group LLC)
Origin:EDUCAUSE Review Articles (2006)
Type:Articles, Papers, and Reports
Abstract:

By adopting a unified approach to information security compliance, higher education institutions not only can effectively satisfy the requirements of the growing number of state and federal laws and industry regulations but also can address identified risks and improve the security of their information assets.

View this resource:
http://www.educause.edu/ir/library/pdf/ERM0653.pdf
http://www.educause.edu/apps/er/erm06/erm0653.asp
| | | | | | | | | | |
Login to post comments  Send to a Friend  7174 reads

The Continuing Evolution of Effective IT Security Practices
Added by the EDUCAUSE Librarian
Title:The Continuing Evolution of Effective IT Security Practices (ID: ERM0652)
Author(s):John Voloudakis (Huron Consulting Group)
Origin:EDUCAUSE Review Articles (2006)
Type:Articles, Papers, and Reports
Abstract:

In the past three years, higher education institutions have made a number of moves to secure their critical systems and protect their users, resulting in a marked change in the techniques used to combat security threats. Today, continued progress may depend on the development of an enterprise IT security program.

View this resource:
http://www.educause.edu/ir/library/pdf/ERM0652.pdf
http://www.educause.edu/apps/er/erm06/erm0652.asp
| | | |
Login to post comments  Send to a Friend  2567 reads
123next ›last »