Educause Security Discussion mailing list archives

Re: risk asessment in edu

From: Dave Kovarik <david-kovarik () NORTHWESTERN EDU>
Date: Thu, 18 Jun 2009 15:10:47 -0500

you could reach out to your audit, legal and human resources departments
for starters

reflect ocean wrote:

Hi.Recently I've been assigned information security responsabilities
and my first step is to determine what assets the organization wants
to protect.i'm struggling trying to come up with something else rather
than student data.
I definitely have a better understanding from the point of what
controls I have to implant (firewalls,ids,incident response
teams,etc...).the stage where i am is assets evaluation according to
some information secruity standards and after that i would continue
with risk assessment.
Has anyone conducted any of these assessments? What risks in terms of
information security do the educational organizations face?
Thank you

reflect.

Current thread:

risk asessment in edu reflect ocean (Jun 18)
- <Possible follow-ups>
- Re: risk asessment in edu jeff murphy (Jun 18)
- Re: risk asessment in edu Dave Kovarik (Jun 18)
- Re: risk asessment in edu Dennis Meharchand (Jun 18)
- Re: risk asessment in edu Kevin Wilcox (Jun 18)
- Re: risk asessment in edu Bob Bayn (Jun 18)
- Re: risk asessment in edu jeff murphy (Jun 18)
- Re: risk asessment in edu Wes Young (Jun 18)
- Re: risk asessment in edu Valdis Kletnieks (Jun 18)
- Re: risk asessment in edu reflect ocean (Jun 18)
- Re: risk asessment in edu Wes Young (Jun 19)
- Re: risk asessment in edu Gary Flynn (Jun 19)
- Re: risk asessment in edu Karen Stopford (Jun 19)

(Thread continues...)