Educause Security Discussion mailing list archives

Re: Recommendations On Cabinet Level InfoSec position

From: Dan Updegrove <updegrove () MAIL UTEXAS EDU>
Date: Wed, 9 Jul 2003 17:25:27 -0500

Jim,

It's hard for me to imagine that a President's group would have advocated
another direct report, especially in a domain that most of them would
consider to be (as William F. Buckley said of ocean sailing) "90% boredom
and 10% terror."

IMHO, the appropriate reporting line for ISO is the to CIO -- and the CIO
should be at the cabinet level. I simply cannot imagine that an ISO would
receive from a president the supervision and support needed to be
effective. In practice, such a "cabinet level" ISO would report to a
"deputy to the president," who is also too busy and non-technical to
provide support.

Regards,
Dan Updegrove


At 05:15 PM 7/9/2003, Jim Moore wrote:

At the Educause security professionals workshop, I believe that someone
mentioned that a college/university presidents group had a task force
which made the recommendation that a cabinet level position for
Information Security be created at colleges/universities.

Does anyone have a reference?

Does anyone have the text of the report/recommendation letter?

Jim
--
--
Jim Moore, CISSP, IAM
Information Security Officer
Rochester Institute of Technology
13 Lomb Memorial Drive
Rochester, NY 14623-5603
Telephone: (585)475-5406
Fax:       (585)475-7950

PGP (jimmoore () mail rit edu): 9C33 0328 CD59 B602 82B8 8521 0DC9 963C D0C0

**********
Participation and subscription information for this EDUCAUSE Discussion
Group discussion list can be found at http://www.educause.edu/memdir/cg/.



VP  for Information Technology          Phone (512) 232-9610
The University of Texas at Austin       Fax (512) 232-9607
FAC 248 (Mail code: G9800)              d.updegrove () its utexas edu
P.O. Box 7407                                   http://wnt.utexas.edu/~danu/
Austin, TX 78713-7407

**********
Participation and subscription information for this EDUCAUSE Discussion Group discussion list can be found at 
http://www.educause.edu/memdir/cg/.

Current thread:

Recommendations On Cabinet Level InfoSec position Jim Moore (Jul 09)
- <Possible follow-ups>
- Re: Recommendations On Cabinet Level InfoSec position Dan Updegrove (Jul 09)
- Re: Recommendations On Cabinet Level InfoSec position art (Jul 10)
- Re: Recommendations On Cabinet Level InfoSec position Jim Wilcox (Jul 12)
- Re: Recommendations On Cabinet Level InfoSec position Angel L Cruz (Jul 12)
- Re: Recommendations On Cabinet Level InfoSec position Chief Information Security Officer (Jul 12)
- Re: Recommendations On Cabinet Level InfoSec position Bruhn, Mark S. (Jul 14)
- Re: Recommendations On Cabinet Level InfoSec position Jim Wilcox (Jul 14)
- Re: Recommendations On Cabinet Level InfoSec position Schmidt, Eric W (Jul 15)
- Re: Recommendations On Cabinet Level InfoSec position Bruhn, Mark S. (Jul 15)
- Re: Recommendations On Cabinet Level InfoSec position Ariel Silverstone (Jul 15)
- Re: Recommendations On Cabinet Level InfoSec position Rodney Petersen (Jul 15)