Educause Security Discussion mailing list archives

Re: The role of Information Security in BC

From: Guy Pace <gpace () SBCTC EDU>
Date: Thu, 3 Sep 2009 07:56:40 -0700

When you narrow down the scenario that far, the key role for Information Security is to participate in activities to 
secure life safety and health of the institutions most important asset, people. This role should be detailed out during 
the "planning" when and if it ever occurs. Depending on the reporting structure and governance of the institution, the 
person filling the Information Security role on a day-to-day basis may become the acting president in some scenarios. 
Proper planning, practice and training gives the entire organization a framework in which to operate so there is no 
question who fills what role or does what task during a given scenario, it all becomes automatic.

Of course, the key elements are proper planning, training and practice. 

Guy L. Pace, CISSP 
Security Administrator
Information Technology Division
WA State Board for Community and Technical Colleges (SBCTC) 
3101 Northup Way, Suite 100 
Bellevue, WA 98004 
425-803-9724 
gpace () sbctc edu 

-----Original Message-----
From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Stephen 
C. Gay
Sent: Thursday, September 03, 2009 5:37 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] The role of Information Security in BC

I would like to solicit the group's opinion on the following question:

What is the role of Information Security in Business Continuity implementation?

An important point:
- There is no question that InfoSec is a critical player in Incident Response, Disaster Recovery, and Business 
Continuity Planning (key word "planning"). The question isn't about any of those scenarios, but rather when 
availability is non-existant, critical infrastructures have been disabled, and life safety is at the forefront...what 
is the role of Information Security?

While I think the answer will vary from institution to institution, I am very interested in your individual thoughts 
and plans.

Warm regards,

Stephen C Gay   CISSP
ITS Associate Director - Information Security Office
KSU Information Security Officer
sgay () kennesaw edu

Current thread:

The role of Information Security in BC Stephen C. Gay (Sep 03)
- <Possible follow-ups>
- Re: The role of Information Security in BC Guy Pace (Sep 03)
- Re: The role of Information Security in BC Plesco, Todd (Sep 03)
- Re: The role of Information Security in BC Jim Dillon (Sep 03)
- Re: The role of Information Security in BC Hugh Burley (Sep 03)
- Re: The role of Information Security in BC Les Mitchell (Sep 03)
- Re: The role of Information Security in BC Matthew Gracie (Sep 04)