Presentation is loading. Please wait.

Presentation is loading. Please wait.

Creating Executive Awareness about Information Security Joy Hughes, VP, George Mason Univ. Jack Suess, VP, UMBC EDUCAUSE.

Published byMaurice Merrin Modified over 9 years ago

Similar presentations

Presentation on theme: "Creating Executive Awareness about Information Security Joy Hughes, VP, George Mason Univ. Jack Suess, VP, UMBC EDUCAUSE."— Presentation transcript:

1 Creating Executive Awareness about Information Security Joy Hughes, VP, George Mason Univ. jhughes@gmu.edu Jack Suess, VP, UMBC jack@umbc.edu EDUCAUSE ANNUAL 2005

2 George Mason University 40 years old, 30,000 students, four campuses Strong deans, but centralized funding model Computing somewhat distributed, somewhat centralized Goal to be in top 100 w.r.t. research $ Traditional excellence: performing arts, public policy, economics, IT. Now becoming biosciences: $25M lab; NIH cancer team Two Nobel prize winners on faculty; yet 40% of faculty are adjuncts

3 UMBC 39 years old, 12,000 students, 1 campus Research/extensive designation - focus on science, engineering, IT, and public policy Moving from centralized to decentralized in management Stable management team, most have been in place for 10 years.

4 Aspects of the Culture that Influence Mason’s Security Strategies IT staff can not order others to use certain hardware/software or to take particular security measures. Decisions are made in a collegial manner with much opportunity for input from broad sections of the campus community. The president is external; he can not lead without the support of the deans, faculty, Board, etc.

5 Aspects of Culture that Influence UMBC’s Security Strategies Collegiality - the management team is stable and works together on issues. Weekly VP’s/Deans meeting allows group to share issues. Strong support for governance structure and governance works closely with administration Founders are retiring, which is causing culture to change

6 Aspects of the Political System at Mason that Influence Security Strategies IT can not charge back for security services. The deans are more inclined to listen to their own experts when it comes to technology rather than to IT. The Budget Group has to be perceived as engaged in processes that are reasonably fair and strategic or it will lose legitimacy and not be able to function.

7 Aspects of Political System at UMBC Influencing Security Governance process makes policy approval lengthy and requires significant time from sponsoring entity Small enough that people know each other and expect personal communication. President has tremendous support, even after 14 years!

8 Mason Strategies to Promote Executive Awareness Engage:  the president’s chief of staff: (he sets the Board agenda and Cabinet agenda)  the distributed SAs: (if they support what you are doing, they will let their leaders know – and vice versa)  the technology thought leaders in the academic units: (the deans listen to them)  the auditors: (they report to the Board)  the Budget Group: (duh! they have the money)

9 UMBC Strategies to Promote Executive Awareness Engage - around points of leverage  President - his concern is maintaining good legislative audits  Provost - his concern is academic integrity  VP of Research - regulatory compliance  My personal engagement in the formal governance process  Engage departmental IT Staff  Engage central IT staff

10 Strategies to Promote Executive Awareness Create Groups that will Influence Executives : a compliance team a systems administrators leadership team a group of security liaisons appointed by their deans an executive enterprise risk management group

11 Strategies to Promote Executive Awareness Leverage security into  Existing channels in your institution Governance Budget and Planning Departmental IT liaisons Personal Discussions with key stakeholders Central and departmental IT

12 What I’d Tell My Successor to Do! Use your ex-officio status to connect with governance groups Set up regular individual meetings with other VP’s and Deans to discuss IT and security issues before bringing them up in the VP meetings Continue IT security working group meetings Learn the culture before proposing new policies.

13 Security Resources EDUCAUSE/Internet2 Security Task Force http://www.educause.edu/security http://www.educause.edu/security To view and/or download the video: www.educause.edu/LibraryDetailPage/666?ID= CSD4121

Download ppt "Creating Executive Awareness about Information Security Joy Hughes, VP, George Mason Univ. Jack Suess, VP, UMBC EDUCAUSE."

Similar presentations

1 Governance, Leadership and Management in Universities Gareth Evans, Chancellor, Australian National University What is the shape of power in university.

1 Governance, Leadership and Management in Universities Gareth Evans, Chancellor, Australian National University What is the shape of power in university.
Risk Management at Harvard – Panel Discussion Harvard IT Summit

Risk Management at Harvard – Panel Discussion Harvard IT Summit
Security Education and Awareness Workshop January 15-16, 2004 Baltimore, MD.

Security Education and Awareness Workshop January 15-16, 2004 Baltimore, MD.
Purpose Structure of Visit  Purpose: Review and comment on George Mason University College of Education and Human Development operations and policies.

Purpose Structure of Visit  Purpose: Review and comment on George Mason University College of Education and Human Development operations and policies.
Funding for Cyberinfrastructure What has worked at Minnesota? What doesn’t work? What are we doing to move forward?

Funding for Cyberinfrastructure What has worked at Minnesota? What doesn’t work? What are we doing to move forward?
Enterprise Security A Framework For Tomorrow Christopher P. Buse, CPA, CISA, CISSP Chief Information Security Officer State of Minnesota.

Enterprise Security A Framework For Tomorrow Christopher P. Buse, CPA, CISA, CISSP Chief Information Security Officer State of Minnesota.
Information Security Level 1 – Confidential © 2008 – Proprietary and Confidential Information of Amdocs Human Resources as a Business Partner Nurit Shiber,

Information Security Level 1 – Confidential © 2008 – Proprietary and Confidential Information of Amdocs Human Resources as a Business Partner Nurit Shiber,
A Good Place to Do Science: A Case Study of an Academic Science Department Diana Bilimoria C. Greer Jordan Department of Organizational Behavior Case Western.

A Good Place to Do Science: A Case Study of an Academic Science Department Diana Bilimoria C. Greer Jordan Department of Organizational Behavior Case Western.
BUSINESS PROCESS IMPROVEMENT INITIATIVES Chad Cleveland June 18, 2014 BAAF Meeting.

BUSINESS PROCESS IMPROVEMENT INITIATIVES Chad Cleveland June 18, 2014 BAAF Meeting.
The Pennsylvania State University Service Learning- Engaged Scholarship Task Force Sponsored by Interim Provost Vice President, Student Affairs Vice President,

The Pennsylvania State University Service Learning- Engaged Scholarship Task Force Sponsored by Interim Provost Vice President, Student Affairs Vice President,
Institutional Effectiveness Operational Update Presentation made to the Indiana State University Board of Trustees October 5, 2001.

Institutional Effectiveness Operational Update Presentation made to the Indiana State University Board of Trustees October 5, 2001.
MAIS and ITSS PRIORITIES Laura Patterson, MAIS Associate Vice President Unit Liaison Meeting January 23, 2008.

MAIS and ITSS PRIORITIES Laura Patterson, MAIS Associate Vice President Unit Liaison Meeting January 23, 2008.
Diversity Assessment and Planning with members of the October 14, 2005.

Diversity Assessment and Planning with members of the October 14, 2005.
Hiring a Diverse Faculty – are we there yet…? A presentation to Highline Community College on some results from a study of changes in full-time faculty.

Hiring a Diverse Faculty – are we there yet…? A presentation to Highline Community College on some results from a study of changes in full-time faculty.
Understanding Boards Building Connections: Community Leadership Program.

Understanding Boards Building Connections: Community Leadership Program.
A Dialogue With the Community: Wireless Expansion, Network Connectivity, and the Rate Model Telecommunications Advisory Board.

A Dialogue With the Community: Wireless Expansion, Network Connectivity, and the Rate Model Telecommunications Advisory Board.
UST Exempt Staff Council A series of forums for exempt staff to discuss a proposed new university committee Richelle Wesley, Associate University Registrar.

UST Exempt Staff Council A series of forums for exempt staff to discuss a proposed new university committee Richelle Wesley, Associate University Registrar.
Chapter 5 Decision Makers and Decision Making. Who are the Decision Makers in Business? McGraw-Hill © 2004 The McGraw-Hill Companies, Inc. All rights.

Chapter 5 Decision Makers and Decision Making. Who are the Decision Makers in Business? McGraw-Hill © 2004 The McGraw-Hill Companies, Inc. All rights.
7/16/2015 1 Roadmap to the Future: Product Strategy for UM Enterprise Systems Michigan Administrative Information Services (MAIS) HRMS Unit Liaison Meeting.

7/16/ Roadmap to the Future: Product Strategy for UM Enterprise Systems Michigan Administrative Information Services (MAIS) HRMS Unit Liaison Meeting.
The topics addressed in this briefing include:

The topics addressed in this briefing include:

Similar presentations

Ads by Google