Search| Browse| Contribute
Library| Blogs| Jobs| Podcasts| Wikis| Feeds
Page Location:
Home > Browse > Policy and Law > Policy and Law: Federal > Federal Privacy Law > Identity Theft and Incident Handling and Response (7 records)
Alternate ViewsRSS

Identity Theft and Incident Handling and Response

Recent resources tagged with Identity Theft and Incident Handling and Response.

Information Security Governance: Standardizing the Practice of Information Security
Added by the EDUCAUSE Librarian
Title:Information Security Governance: Standardizing the Practice of Information Security (ID: ERB0817)
Author(s):Tammy L. Clark (Georgia State University) and Toby D. Sitko (EDUCAUSE)
Origin:Documents Contributed by ECAR, Research Bulletins (08/19/2008)
Type:Articles, Papers, and Reports
Abstract:

This ECAR research bulletin discusses the trend to use a variety of risk assessment frameworks and standards to create an information security program that is sufficiently comprehensive for colleges and universities. These standards include the Control Objectives for Information and related Technology (CobiT) IT control framework, the Information Technology Infrastructure Library (ITIL) service management framework, and the set of information control objectives now commonly referred to as ISO 27001. In specific, the process of implementing this framework at Georgia State University (GSU) is discussed. In addition, the bulletin provides a rationale for an information security governance framework that enables executives to see the degree to which their information security programs are effective in assessing and mitigating risks, protecting confidential data, aligning goals with institutional academic and business objectives, and continuously improving over time.

View this resource:
http://www.educause.edu/ir/library/pdf/ecar_so/erb/ERB0817.pdf
This publication is currently password protected. All faculty, staff, and students from institutions that have subscribed to ECAR at the ECAR Participating, Comprehensive Content, Corporate, and Research Bulletins Package levels are authorized to access this publication by using their EDUCAUSE personal profile.
| | | | | |
Login to post comments  Read more  Send to a Friend  3329 reads

Training Your Staff to Protect SIS Data
Added by the EDUCAUSE Librarian
Title:Training Your Staff to Protect SIS Data (ID: CSD5118)
Author(s):Marcia Layton Turner (University Business)
Origin:Contributed by Organizations or Campuses (09/05/2007)
Type:Articles, Papers, and Reports
Abstract:

"No matter how robust your firewall, trained faculty and staff are your first line of defense against system breaches."

View this resource:
http://www.universitybusiness.com/viewarticle.aspx?articleid=868&p=1#0[Off site]
| | | | | |
Login to post comments  Send to a Friend  3150 reads

GAO Releases Report on Data Breaches and Identity Theft
Created by Rodney J. Petersen (EDUCAUSE) on July 24, 2007

The Government Accountability Office (GAO) has released a Report on Data Breaches that concludes while "breaches of sensitive information have occurred frequently and under widely varying circumstances, . . . the extent to which data breaches have resulted in identity theft is not well known." It further concludes that "should Congress choose to enact a federal notification requirement, use of a risk-based standard could avoid undue burden on organizations and unnecessary and counterproductive notifications of breaches that present little risk."

Some further higher education references in the report:

| | | | |
Rodney's blog  Login to post comments  Read more  Send to Friend  4323 reads

UCLA Warns Students, Staff of Data Theft
Added by the EDUCAUSE Librarian
Title:UCLA Warns Students, Staff of Data Theft (ID: CSD4723)
Author(s):Rachael Myrow (National Public Radio)
Origin:Contributed by Organizations or Campuses (2006)
Type:Interviews/Podcasts/Videos
Abstract:The University of California-Los Angeles alerts some 800,000 current and former students, applicants, faculty and staff that their personal information -- names, addresses, Social Security numbers -- were exposed when a hacker broke into a campus computer system. The university says that only a small percentage of the records in the database were actually accessed. The case may be the largest computer breach ever at an American university.
View this resource:
http://www.npr.org/templates/story/story.php?storyId=6615470[Off site]
| | | |
Login to post comments  Send to a Friend  1651 reads

Major breach of UCLA's computer files
Added by the EDUCAUSE Librarian
Title:Major breach of UCLA's computer files (ID: CSD4722)
Author(s):Rebecca Trounson (Los Angeles Times)
Origin:Contributed by Organizations or Campuses (2006)
Type:Articles, Papers, and Reports
Abstract:"Personal information on 800,000 students, alumni and others is exposed. Attacks lasted a year, the school says."
View this resource:
http://www.latimes.com/news/local/la-me-ucla12dec12,0,7111141.story[Off site]
| | | |
Login to post comments  Send to a Friend  2042 reads

Data Incident Notification Toolkit
Added by the EDUCAUSE Librarian
Title:Data Incident Notification Toolkit (ID: CSD4247)
Origin:Contributed by the Security Task Force (2005)
Type:Tools
Abstract:

This Data Incident Notification Toolkit was created by the EDUCAUSE/Internet2 Computer and Network Security Task Force as a guide for higher education institutions.

View this resource:
https://wiki.internet2.edu/confluence/display/secguide/Data+Incident+Notification+Toolkit[Off site]
| | |
Login to post comments  Send to a Friend  2212 reads

Thresholds for Notification
Added by the EDUCAUSE Librarian
Title:Thresholds for Notification (ID: CSD4236)
Origin:Contributed by the Security Task Force (2005)
Type:Tools
Abstract:"Thresholds for Notification: Deciding Whether or Not to Notify", which helps to determine the threshold for security breach notification was produced by the University of California Office of the President.
View this resource:
http://www.educause.edu/ir/library/pdf/CSD4236.pdf
|
Login to post comments  Send to a Friend  1974 reads