Seminar 05P - Establishing an Information Security Program
PLEASE NOTE: Separate registration and fee are required to attend this seminar.

Session Details

Speaker(s)

• Cedric Bennett, Emeritus Director, Information Security Services, Stanford University
• Session convener: Lori McElroy, Information Security Officer, Texas State University-San Marcos

Abstract

This interactive session will provide an overview of areas such as growing the program, gaining broad support, finding resources, focusing direction, and planning for what comes next. Many information security seminars and classes focus either on specific areas of the security landscape or technical tools and methods. While these subjects provide useful information and skills needed to operate a security program, they do not offer sufficient guidance on the development of the information security program itself. This seminar will focus on the management and leadership issues that must be addressed in order to launch a program and obtain the institutional buy-in necessary for success. We'll take a look at staffing models, risk assessment, policy development, campus-wide awareness efforts, staff training, privacy issues, and operational and technical controls. Participants will be given an opportunity to discuss and potentially address security issues from their own institutions.