Your search keyword '"CISO"' showing total 6 results

1. The Rise of the CISO

Author

Gale, Doug

Abstract

The late 1980s was an exciting time to be a CIO in higher education. Computing was being decentralized as microcomputers replaced mainframes, networking was emerging, and the National Science Foundation Network (NSFNET) was introducing the concept of an "internet" to hundreds of thousands of new users. Security wasn't much of an issue; the big debate on campus was whether to regulate access to the alt.sex newsgroups. An institution's systems group handled IT security as an afterthought. No one had a "chief information security officer" (CISO)--or anything like it. Now, two decades later, cyber security is routinely identified as the top concern of higher education CIOs, according to the Campus Computing Project's "2006 National Survey of Information Technology in US Higher Education." And with good reason: The CDW-G "Higher Education IT Security Report Card 2006" indicates that 56 percent of all higher education institutions have experienced at least one security incident in the last year. The role of the CISO is evolving from a technologist responsible for computer systems administration, to someone with campuswide responsibility for information security policy, regulatory compliance, and financial tradeoffs, as well as technically oriented computer/network security and incident response. The author contends that regardless of how information security is organized, the function is only going to grow in importance and institutions must develop strategies for addressing new security challenges. Information security as an afterthought is no longer a viable option.

Published

2007

2. A Toast to Industry Gatherings.

Author

Dunkel, Dan

Subjects

SOCIAL networks, SECURITY management, BEST practices, BUSINESS intelligence, PERSONNEL management

Abstract

The article offers information on the Executive Alliance's Information Security Executive Awards (ISE) program, a networking events for the regional chief information security officer (CISO) community that took in Atlanta, Georgia. It notes that the CISO and sponsors are gathering to share presentations and thoughts from best practices to selling security return on investment to senior management. It emphasizes that the CISO position promotes the notion that security is a business practice.

Published

2009

3. FEDERALIZING DATA BREACHES.

Author

PERCARPIO, EDWARD

Subjects

DATA security failures, FEDERAL government, PERSONAL information management

Published

2023

4. Directors & Officers: just because they don't perform technical or operational work, doesn't mean they aren't personally involved.

Author

Cresson Wood, By Charles and Nusz, Harvey

Subjects

EXECUTIVES, INDUSTRIAL management, SENIOR leadership teams, CORPORATE directors, CONSENT decrees, COMPUTER passwords, DATA privacy

Abstract

In spite of the fact that modern information security and privacy attacks are now reaching epic proportions, and also gravely damaging both business and government, there remains a widespread misconception amongst the ranks of directors and officers. That misconception holds that they – the directors and officers – don't need to personally get involved in this vitally important area. The truth is that just because they don't do hands-on technical or operational work, that doesn't mean they aren't required to play a critically important role addressing these issues. Their required participation is clearly and irrefutably in evidence in authoritative legal sources such as laws, regulations, court opinions, settlement agreements, etc. The hands-off attitude, this distance from the urgency and difficulty of dealing with the problems, has unfortunately had many serious and damaging consequences. For example, the directors and officers at Equifax recently settled a breach-related lawsuit with plaintiff lawyers, to the tune of $149 million (2020, See In Re Equifax Inc. Securities Litigation, U.S. Dist. Ct. (N. Dist. Georgia, 2020), Consolidated Case No. 1:17-cv-03463-TWT). That lawsuit was based on an Equifax 2017 breach where the credit reports of some 143 million customers were disclosed to unauthorized parties. Before that, the directors and officers at Yahoo! settled a shareholders' derivative action to the tune of $29 million (2019, For specifics, see In re Yahoo! Inc. Customer Data Sec. Breach Litig., 2019 U.S. Dist. LEXIS 15034 (2019)). The latter lawsuit was based on several breaches at Yahoo! between 2013 and 2016 involving the release of sensitive user information, and then concealment from investors of the facts about those breaches. These and other recent cases make it clear what the scope of the role, for directors and officers, is now being illuminated. To be specific, their role is in fact now sufficiently clear and documented that it can be used as a reference point in various tasks, such as independent audits that green-light certain high-risk transactions. This reference point can also be used for a number of critical governmental actions, such as annually approving the actions taken by corporate senior management in response to a consent decree. Illustrating the contours of this new role, this article provides a brief overview of the minimum legal obligations of corporate directors and officers when it comes to information security and privacy. [ABSTRACT FROM AUTHOR]

Published

2022

5. Parent and Child Relationship Generally.

Author

Smith, Leslie and Cruz, Melissa

Subjects

GRANDPARENTS, STATUTES, INTERPERSONAL relations, VISITATION rights (Domestic relations)

Abstract

The article presents information on the Grandparent Visitation Statute that was enacted in Georgia to maintain good relationship between the children's and their grandparents. It informs that the Act provides courts the authority to award grandparents reasonable visitation rights to their grandchildren. It further discusses the decision in a Supreme Court case Brooks v. Patterson wherein grandparents were granted visitation rights.

Published

2012

6. Balancing Dollars & Demand

Author

O'Hanlon, Charlene

Abstract

When it comes to building and maintaining a cutting-edge infrastructure on a limited budget, nobody knows more about the pain points, challenges, and workarounds than the IT professionals tasked with overseeing campus IT. In a recent roundtable discussion with "Campus Technology" contributing writer Charlene O'Hanlon, four IT administrators--James Stoner, director of scientific computing at the University of Denver (Colorado); Steve Engorn, CIO of Villa Julie College (Maryland); Ryan Laus, network manager at Central Michigan University; and Stan Gatewood, CISO of The University of Georgia--all shared their experiences and advice for peers.

Published

2007