Educause Security Discussion mailing list archives

Re: Mtgs with people outside of IT?

From: Ben Woelk <fbwis () RIT EDU>
Date: Wed, 12 May 2010 11:59:11 -0400

Jessica,
Is this the only "learning opportunity" presented to these folk? Do you do any training geared towards staff? Do you 
present core information and then discuss or are you providing a discussion topic only?

Some suggestions:

*         Use the group to help with strategic planning

*         Solicit topic suggestions from the attendees

*         Hold brown-bag lunch sessions on specific topics with a subject matter expert presenter and allow time for 
Q&A.

*         Monthly may not be the right frequency for this meeting at your institution. Reduce the frequency of the 
meetings to bi-monthly or even once a semester

*         Tie the meetings to current activity conducted in the information security function and share status updates, 
etc.


Ben Woelk '07
Co-Chair, Awareness and Training Working Group
EDUCAUSE/Internet2 Higher Education Information Security Council
Policy and Awareness Analyst
Information Security Office
Rochester Institute of Technology
Ross 10-A204
151 Lomb Memorial Drive
Rochester, New York 14623
585.475.4122
585.475.7920 fax
ben.woelk () rit edu<mailto:ben.woelk () rit edu>
http://security.rit.edu/dsd.html

Become a fan of RIT Information Security at http://rit.facebook.com/profile.php?id=6017464645

Follow us on Twitter: http://twitter.com/RIT_InfoSec


From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Raymond, 
Jessica
Sent: Wednesday, May 12, 2010 11:15 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Mtgs with people outside of IT?

Hi all!  I am the chair of a monthly meeting where we meet with other administrative staff from finance, the 
Registrar's office, accounting, payroll, hr, the internal auditor, etc.  It's supposed to be a committee in which to 
discuss IT security topics with people outside of IT.  I've been doing this for a year now and find myself at a loss 
for what to discuss in the meeting and how to make it beneficial and worthwhile for those in attendance.  Do you hold 
these types of meetings, and if so, what agenda items are discussed?

We've discussed:
Data Retention
Handling of Sensitive Information
The creation of online courses for students, faculty, and staff
Physical Security
How to best communicate with students

Any insight will be appreciated!

Jessica L. Behunin, CISSP (r) (formerly Raymond)
Information Security Analyst
Information Technology Department
University of Northern Colorado
Campus Box 19
Carter Hall 14, Office 0009b
Greeley, CO 80639
Office: 970-351-1420
Mobile: 970-213-8928
www.unco.edu<http://www.unco.edu>
[cid:image001.jpg@01CAF1C9.DD8DAAD0]

Current thread:

Mtgs with people outside of IT? Raymond, Jessica (May 12)
- <Possible follow-ups>
- Re: Mtgs with people outside of IT? Matthew Gracie (May 12)
- Re: Mtgs with people outside of IT? Ullman, Catherine (May 12)
- Re: Mtgs with people outside of IT? Alex Jalso (May 12)
- Re: Mtgs with people outside of IT? Ben Woelk (May 12)
- Re: Mtgs with people outside of IT? Mehmedovic, Jenny (May 12)
- Re: Mtgs with people outside of IT? Valdis Kletnieks (May 12)
- Re: Mtgs with people outside of IT? Barbara Torney (May 12)
- Re: Mtgs with people outside of IT? Felecia Vlahos (May 12)