Re: [Newsletter] [SECURITY] Info Sec at Small Colleges

[Sowjanya O Neill <soneill () FORTINET COM>]

Chris,

I just hosted an education panel session that discussed this topic.  I would be happy to have a call with you to share 
ideas and maybe put you in touch with some other IT edu folks.

Regards,
Sowjanya O Neill
From: The EDUCAUSE Security Constituent Group Listserv <SECURITY () listserv educause edu> on behalf of "Davis, Chris" 
<CDavis () LOURDES EDU>
Reply-To: The EDUCAUSE Security Constituent Group Listserv <SECURITY () listserv educause edu>
Date: Friday, March 9, 2018 at 3:04 PM
To: "SECURITY () listserv educause edu" <SECURITY () listserv educause edu>
Subject: [Newsletter] [SECURITY] Info Sec at Small Colleges

I apologize if this is a double email for anyone.  I sent this question the small college group, but then thought, it 
might get more traction/attention here.

Before my question, a brief background on my school.  We are a small Catholic liberal arts university with an 
enrollment of approximately 1,300 students.

We attended a webinar today on GDPR which led to a larger discussion regarding information security.  My question to 
the group is, how do the smaller colleges justify the expenditures required for a decent info sec program to your 
administration given the size of our institutions.  Also, would anyone be willing to hop on a call to discuss info sec 
programs at small colleges and what you are doing to stay compliant with the various regulatory requirements - PCI, 
HIPAA, GLBA, Red Flag, FERPA, and potentially, GDPR.

Many thanks in advance!

Chris


Christopher Davis, Ph.D.
Chief Information Officer
Lourdes University
6832 Convent Blvd. | REH 003P | Sylvania, OH 43560
cdavis () lourdes edu<mailto:cdavis () lourdes edu>

CONFIDENTIALITY NOTICE: The contents of this email message and any attachments are intended solely for the addressee(s) 
and may contain confidential and/or privileged information and may be legally protected from disclosure. If you are not 
the intended recipient of this message or their agent, or if this message has been addressed to you in error, please 
immediately alert the sender by reply email and then delete this message and any attachments. If you are not the 
intended recipient, you are hereby notified that any use, dissemination, copying, or storage of this message or its 
attachments is strictly prohibited.







***  Please note that this message and any attachments may contain confidential and proprietary material and 
information and are intended only for the use of the intended recipient(s). If you are not the intended recipient, you 
are hereby notified that any review, use, disclosure, dissemination, distribution or copying of this message and any 
attachments is strictly prohibited. If you have received this email in error, please immediately notify the sender and 
destroy this e-mail and any attachments and all copies, whether electronic or printed. Please also note that any views, 
opinions, conclusions or commitments expressed in this message are those of the individual sender and do not 
necessarily reflect the views of Fortinet, Inc., its affiliates, and emails are not binding on Fortinet and only a 
writing manually signed by Fortinet's General Counsel can be a binding commitment of Fortinet to Fortinet's customers 
or partners. Thank you. ***