Security from a compliance perspective

• You need to because it's the law!
• Lack of funding is not a "Get out of Jail Free Card!"
• Rather than creating committees to discuss increasing security, focus in on these documents and what the law requires, then discuss and let us help you in terms of selecting the most appropriate technology.
• Citing the compliance requirements can often be one of the easiest ways of motivating staff to move forward. This is an easy way to justify the cost of security products that you probably want and need regardless.
• Create a safe harbor for your campus if you are complying with the rules and regulations.
• If you have Financial Aid, GLBA probably applies.
• If you have student health centers, HIPAA probably applies.
• Red Flag rules and compliance requirements may apply for:
• Financial Institutions and creditors to right identity theft (check ftc.gov site)
• Health Care providers for fighting identity theft (check ftc.gov site)
• If you process credit cards, PCI applies.
• Regardless, if you have a breach, SB1386 applies meaning that you must notify.
• Need help citing real cases of security problems in Higher Education, then go to http://www.adamdodge.com/esi/ the site is excellent and dedicated to Educational Security Incidents.
• Education is an easy target due to lack of security focus, lack of physical security and general higher awareness of security protection methods deployed.
• Let us help if you have SCADA (Supervisory Control and Data Acquisition) specific security needs for control systems. We have some new solutions entering the market very soon.