Presentation is loading. Please wait.

Presentation is loading. Please wait.

Why Privacy & Security Awareness Training?. Why is privacy & security awareness training required?

Published byClement Harmon Modified over 8 years ago

Similar presentations

Presentation on theme: "Why Privacy & Security Awareness Training?. Why is privacy & security awareness training required?"— Presentation transcript:

1 Why Privacy & Security Awareness Training?

2 Why is privacy & security awareness training required?

3 Changing Threat Landscape Then Amateur hackers Web site defacement Viruses Infrequent attacks Now Organized crime SQL Injections Identity theft Constant threat + Amateur hackers Web site defacement Viruses

4 Why is privacy & security awareness training required? Threats to data, systems, and networks are increasing. Attacks are more sophisticated. Technology can’t do the job alone. National Association of State Chief Information Officers and other leading organizations have said this is a high priority.

5 Why is privacy & security awareness training required? Louisiana public servants have a responsibility to safeguard data and other IT resources. OIT policies require it.  http://doa.louisiana.gov/oit/pdf/IT_POL_1-00.pdf

6 What are my responsibilities? Be privacy & security minded.  Privacy & security considerations are necessities, not burdens.  Consider the impact your actions could have on the security of data and other IT resources.

7 What are my responsibilities? Be willing to learn.  Understand the privacy and security requirements of the networks, systems, devices, and data that are part of your job.  Know what data you have.  Know with whom you are communicating.  Question Question Question “Do we need this data for a business function?” “Should I have access to this data?” “Should I share this data with others?”

8 What are my responsibilities? Be proactive.  Adopt good privacy and security practices at work and at home.  Report unusual events.

9 What are my responsibilities? Seek help and advice.  Become familiar with the policies, procedures, and standards that apply to your work environment.  When in doubt, ask!

10 How do I know what to do? Federal & state law University Policies University Procedures University Work Rules Procedures or standards specific to a program or deapartment Your team lead, supervisor, or manager Security Officer or Data Privacy Point of Contact

11 Where can I get information? Michael Graham Chief Information Technology Officer  mgraham@mcneese.edu, 5523 mgraham@mcneese.edu http://www.mcneese.edu/IS http://doa.louisiana.gov/oit/Policies.htm

12 Where do I start? IT Best Practices  Acceptable Use  Password-PIN  Mobile Computing  Data Classification  Security Education and Awareness  Incident Response  And more

13 Where do I start? Special Areas of Concern  Sensitive data  E-mail  Portable computing devices  Storage media – electronic and non-electronic  Internet & Usage  Physical security  Exit procedures  Incident response

14 Remember Privacy & Security are everybody’s business!

15 Questions???

Download ppt "Why Privacy & Security Awareness Training?. Why is privacy & security awareness training required?"

Similar presentations

CISSP Seeks CIPP Object: Mutual Compliance Marriage of Privacy and Security Professionals Under HIPAA David B. Nelson, CISSP Yolo County Woodland, California.

CISSP Seeks CIPP Object: Mutual Compliance Marriage of Privacy and Security Professionals Under HIPAA David B. Nelson, CISSP Yolo County Woodland, California.
Darton College Information Systems Use Policies. Introduction Dartons Information Systems are critical resources. The Information Systems Use Policies.

Darton College Information Systems Use Policies. Introduction Dartons Information Systems are critical resources. The Information Systems Use Policies.
Evolution of Data Use and Stewardship Recent University-wide Data Stewardship Enhancements Integrated System Data Stewardship Shirley C. Payne, CISSP,

Evolution of Data Use and Stewardship Recent University-wide Data Stewardship Enhancements Integrated System Data Stewardship Shirley C. Payne, CISSP,
Information Technology Awareness Wayne Donald IT Security Officer.

Information Technology Awareness Wayne Donald IT Security Officer.
Red Flags Rule BAS Forum August 18, 2010. What is the Red Flags Rule? Requires implementation of a written Identity Theft Prevention Program designed.

Red Flags Rule BAS Forum August 18, What is the Red Flags Rule? Requires implementation of a written Identity Theft Prevention Program designed.
Government Information Assurance (GIA) Policy. 2 Current Scenario  It is a connected world!  More and More services are being provided online  Continuous.

Government Information Assurance (GIA) Policy. 2 Current Scenario  It is a connected world!  More and More services are being provided online  Continuous.
Invasion of Smart Phones in Clinical Areas Chrissy Kyak Privacy Officer University of Maryland Upper Chesapeake Health.

Invasion of Smart Phones in Clinical Areas Chrissy Kyak Privacy Officer University of Maryland Upper Chesapeake Health.
Springfield Technical Community College Security Awareness Training.

Springfield Technical Community College Security Awareness Training.
Internet Safety James Fuller Internet Rules To Remember When asked by friends or strangers, online or offline, never share Account IDs and Passwords.

Internet Safety James Fuller Internet Rules To Remember When asked by friends or strangers, online or offline, never share Account IDs and Passwords.
SL21 Information Security Board Mission, Goals and Guiding Principles.

SL21 Information Security Board Mission, Goals and Guiding Principles.
2 Issues of the information age Computer _______ and mistakes –Preventing computer related waste & mistakes Computer crime –Computer as tool to commit.

2 Issues of the information age Computer _______ and mistakes –Preventing computer related waste & mistakes Computer crime –Computer as tool to commit.
Part 2 of Evil Lurking in Websites Data Security at the University of Wisconsin Oshkosh.

Part 2 of Evil Lurking in Websites Data Security at the University of Wisconsin Oshkosh.
McGraw-Hill © 2008 The McGraw-Hill Companies, Inc. All rights reserved. Chapter 8 Threats and Safeguards Chapter 8 PROTECTING PEOPLE AND INFORMATION Threats.

McGraw-Hill © 2008 The McGraw-Hill Companies, Inc. All rights reserved. Chapter 8 Threats and Safeguards Chapter 8 PROTECTING PEOPLE AND INFORMATION Threats.
Data Security At Cornell Steve Schuster. Questions I’d like to Answer ► Why do we care about data security? ► What are our biggest challenges at Cornell?

Data Security At Cornell Steve Schuster. Questions I’d like to Answer ► Why do we care about data security? ► What are our biggest challenges at Cornell?
9 99 CHAPTER Privacy and Security - FAQ’s. 9 © The McGraw-Hill Companies, Inc. 2002 Privacy How secure is data –On system –On Internet Private network.

9 99 CHAPTER Privacy and Security - FAQ’s. 9 © The McGraw-Hill Companies, Inc Privacy How secure is data –On system –On Internet Private network.
Fundamentals of Information Systems, Second Edition 1 Security, Privacy, and Ethical Issues in Information Systems and the Internet Chapter 9.

Fundamentals of Information Systems, Second Edition 1 Security, Privacy, and Ethical Issues in Information Systems and the Internet Chapter 9.
Session 3 – Information Security Policies

Session 3 – Information Security Policies
Comptroller of the Currency Administrator of National Banks E- Security Risk Mitigation: A Supervisor’s Perspective Global Dialogue World Bank Group September.

Comptroller of the Currency Administrator of National Banks E- Security Risk Mitigation: A Supervisor’s Perspective Global Dialogue World Bank Group September.
ICT School Policies 6 th November 2014. Suggested Policies for Schools Not always a requirement, but useful to cover you, your school and the students.

ICT School Policies 6 th November Suggested Policies for Schools Not always a requirement, but useful to cover you, your school and the students.
HIPAA Privacy & Security EVMS Health Services 2004 Training.

HIPAA Privacy & Security EVMS Health Services 2004 Training.

Similar presentations

Ads by Google