2015 Top 5 Higher Ed Infosec Issues Infographic
Higher education isn’t just a place to learn about cybersecurity — it’s a place to put solid digital defense practices into action. The Higher Education Information Security Council (HEISC) was established in July 2000 to provide coordination for the higher education sector. The HEISC mission is to support higher education institutions as they improve information security governance, compliance, data protection, and privacy programs. HEISC accomplishes this work through volunteer groups supported by professional EDUCAUSE staff, as well as collaborations with other organizations that address information security and privacy in higher education. HEISC actively develops and promotes information security leadership, awareness, and understanding; effective practices and policies; and guidance for the protection of critical data, IT assets, and infrastructures. Earlier this year, the group released the 2015 Top 5 Higher Ed Infosec Issues Infographic that includes the top five strategic information security issues for 2015.
Top 5 Higher Education Information Security Issues
- Developing an effective information security strategy that responds to institutional organization and culture and that elevates information security concerns to institutional leadership.
- Ensuring that members of the institutional community (students, faculty, and staff) receive information security education and training.
- Developing security policies for mobile, cloud, and digital resources (includes issues of data handling/protection, access control, and end-user awareness).
- Using risk-management methodologies to identify and address information security priorities.
- Developing, testing, and refining incident response capabilities to respond to information systems/data breaches.
Wondering what’s next?
The Higher Education Information Security Council Information Security Guide is the only resource developed by higher education information security practitioners for higher education information security practitioners. The guide features toolkits, case studies, effective practices, and recommendations to help jump-start campus information security initiatives. (Don’t reinvent the wheel every time you start a new infosec project, policy, or program function on campus.)