Abstract
The purpose of this white paper, jointly written by the National Student Clearinghouse, EDUCAUSE and REN-ISAC, is to build upon registrars’, enrollment managers’, IT’s and higher education’s day-to-day, nationwide dialog around cybersecurity and vulnerabilities.
The following insight is based on the Clearinghouse’s 25-year record of maintaining the confidentiality and privacy of student records and frequent cybersecurity conversations with registrars, enrollment managers and other institution officials; EDUCAUSE and REN-ISAC’s cybersecurity work over many years; and current best practices expressed in two recent major reports. The 2018 EDUCAUSE and Deloitte’s Center for Higher Education Excellence report urges improved communication between the IT department and institutional leaders, including board members, to more effectively prevent attacks and recover after a cyber incident occurs. In addition, the 2018 Verizon Data Breach Investigations Report sheds light on what to watch for, what to do, and what not to do.