Report: Registrars and Enrollment Leaders Need a Heavier Hand in IT Security

  • By Dian Schaffhauser
  • 10/23/18
Glowing icons representing people in a network

Because registrars and enrollment managers make decisions daily that affect securing data, both roles should be "key members" of the cybersecurity team. According to a new paper on information security in higher education, those individuals should meet regularly with the CIO and chief information security officer to weigh in on incident response plans, risk management and training programs. When they're holding staff meetings, information security needs to be a standing agenda item. And they should be involved in taking inventory of the data and who has access to it.

"Why Cybersecurity Matters" was produced by the National Student Clearinghouse, Educause and the Research and Education Networking Information Sharing and Analysis Center (REN-ISAC).

According to the report, at least some of the responsibility for responding to a data breach will rest with the registrar's office and the office of enrollment management. For that reason, the leaders of those units need to understand how breaches could happen, how student data is being secured and what challenges the IT office faces in securing data.

Also, because they interact with third-party companies that are working with student data and institutional systems, they need to be prepared to ask hard questions of those vendors about cybersecurity practices, among them:

  • Does the organization use multifactor authentication?
  • Does the organization have an incident response plan defined?
  • When and how will notification be done when a breach occurs?

The paper offers an action list of recommended actions for these roles, including:

  • Pinpointing the risks and sorting out with IT which organization is responsible for what security steps;
  • Making sure that endpoints are automatically updated;
  • Implementing multifactor authentication; and
  • Knowing everyone who has access to the data, how and why.

The 12-page report is openly available on the Student Clearinghouse website.

About the Author

Dian Schaffhauser is a former senior contributing editor for 1105 Media's education publications THE Journal, Campus Technology and Spaces4Learning.

Featured

  • glowing crystal ball with a simplified university building inside, surrounded by seamlessly blended holographic symbols of binary code, a bar graph, database icons, and a cloud, against a gradient blue and white background with softly merging circuit patterns

    3 Areas Where AI Will Impact Higher Ed Most in 2025

    What should colleges and universities expect from the evolving landscape of artificial intelligence in the coming year? Here's what the experts told us.

  • Two figures, one male and one female, stand beside a transparent digital interface displaying AI symbols like neural networks, code, and a shield, against a clean blue gradient background.

    Report Makes Business Case for Responsible AI

    A new report commissioned by Microsoft and published last month by research firm IDC notes that 91% of organizations use AI tech and expect more than a 24% improvement in customer experience, business resilience, sustainability, and operational efficiency due to AI in 2024.

  • stylized illustration of a portfolio divided into sections for career training

    St. Cloud State University Adds Four Tech Bootcamps via Upright Partnership

    To meet the growing demand for tech professionals in the state, Minnesota's St. Cloud State University is partnering with Upright to launch four career-focused bootcamps that will provide in-demand skills in software development, UX/UI design, data analytics, and digital marketing.

  • group of college students looking at large screen of data visualizations

    Scalable Cloud Strategies: Values for Higher Education

    From a massive, 23-campus cloud-and-security transformation, to a small college's "lift and shift" entry into the public cloud, Unisys Higher Education Strategist Christopher Wessells knows how higher education leverages the cloud. Here, he examines some of the values scalable cloud strategies offer our institutions.