<rss xmlns:a10="http://www.w3.org/2005/Atom" version="2.0"><channel><title>Compliance</title><link>https://library.educause.edu/topics/cybersecurity/compliance</link><description /><language>en</language><item><guid isPermaLink="false">{8F638165-6FDD-4294-9200-27EDBCE51C48}</guid><link>https://library.educause.edu/resources/2026/5/2026-educause-horizon-report-teaching-and-learning-edition</link><title>2026 EDUCAUSE Horizon Report | Teaching and Learning Edition</title><description>The 2026 EDUCAUSE Teaching and Learning Horizon Report highlights how artificial intelligence, enrollment pressures, policy shifts, and sustainability concerns are reshaping instructional practice and institutional strategy.&lt;br/&gt;</description><pubDate>Tue, 12 May 2026 18:19:08 Z</pubDate></item><item><guid isPermaLink="false">{46B70A9A-6DED-4244-A4EC-CE9C3F9DF572}</guid><link>https://library.educause.edu/resources/2025/6/2025-educause-cybersecurity-and-privacy-workforce-in-higher-education</link><title>2025 EDUCAUSE Cybersecurity and Privacy Workforce in Higher Education</title><description>This report examines the cybersecurity and privacy workforce in higher education and identifies challenges and priorities.</description><pubDate>Thu, 29 May 2025 22:14:31 Z</pubDate></item><item><guid isPermaLink="false">{D6783FE4-03A1-4BF2-8F7F-813B1B816D8E}</guid><link>https://library.educause.edu/resources/2021/10/frequently-asked-questions-about-cyber-insurance</link><title>Frequently Asked Questions about Cyber Insurance</title><description>This document contains advice intended for general information only. To learn how cyber insurance applies to your institution, please contact your institution’s risk management office or chief information officer. </description><pubDate>Fri, 16 May 2025 12:14:00 Z</pubDate></item><item><guid isPermaLink="false">{E21ED46F-CFF6-4B31-91E7-2320F2381DD7}</guid><link>https://library.educause.edu/resources/2025/5/2025-educause-horizon-report-teaching-and-learning-edition</link><title>2025 EDUCAUSE Horizon Report | Teaching and Learning Edition</title><description>The 2025 EDUCAUSE Horizon Report profiles key trends and emerging technologies and practices shaping the future of teaching and learning, and envisions a number of scenarios and implications for that future.&lt;br/&gt;</description><pubDate>Wed, 30 Apr 2025 16:49:40 Z</pubDate></item><item><guid isPermaLink="false">{98BF8D9F-57CD-47A8-81D3-F8B35D6D8DF8}</guid><link>https://library.educause.edu/resources/2025/3/2025-horizon-action-plan-supporting-agency-trust-transparency-and-involvement</link><title>2025 EDUCAUSE Horizon Action Plan: Supporting Agency, Trust, Transparency, and Involvement</title><description>This report describes how advancing the future of higher education cybersecurity and privacy will be done by supporting agency, trust, transparency, and involvement among stakeholders.</description><pubDate>Thu, 13 Mar 2025 17:09:12 Z</pubDate></item><item><guid isPermaLink="false">{DCDD0BF3-6117-4527-AF5D-8AD0E613EDE5}</guid><link>https://library.educause.edu/resources/2024/12/educause-comments-incorporating-cmmc-requirements-into-dod-contracting-regulations</link><title>EDUCAUSE Comments: Incorporating CMMC Requirements Into DOD Contracting Regulations</title><description>On October 15, 2024, EDUCAUSE submitted comments to the U.S. Department of Defense (DOD) regarding its proposed changes to the department’s contracting regulations (i.e., the Defense Federal Acquisition Regulation Supplement, or DFARS) to incorporate Cybersecurity Maturity Model Certification (CMMC) requirements into the defense contracting process.</description><pubDate>Fri, 06 Dec 2024 15:12:55 Z</pubDate></item><item><guid isPermaLink="false">{153C28B0-D00C-4A04-BC48-53DE28E35004}</guid><link>https://library.educause.edu/resources/2024/12/abstract-gender-data-and-demographics-toolkit</link><title>Abstract: Gender Data and Demographics Toolkit</title><description> This Toolkit should serve as a resource to help better understand gender data and demographics. Collecting, storing, and sharing such data carries risks that need to be understood and addressed.</description><pubDate>Wed, 15 Jan 2025 17:50:16 Z</pubDate></item><item><guid isPermaLink="false">{303EC605-46F9-45B1-95C2-49CEEC0E879D}</guid><link>https://library.educause.edu/resources/2024/9/2024-educause-horizon-report-cybersecurity-and-privacy-edition</link><title>2024 EDUCAUSE Horizon Report | Cybersecurity and Privacy Edition</title><description>The 2024 EDUCAUSE Horizon Report profiles key trends and emerging technologies and practices shaping the future of cybersecurity and privacy, and envisions a number of scenarios and implications for that future.</description><pubDate>Tue, 24 Sep 2024 16:46:52 Z</pubDate></item><item><guid isPermaLink="false">{FFE47D4F-2DA6-4B85-A979-0C546A57A3DC}</guid><link>https://library.educause.edu/resources/2024/2/educause-comments-far-cyber-incident-reporting</link><title>EDUCAUSE Comments: FAR Cyber Incident Reporting</title><description>On February 2, 2024, EDUCAUSE was joined by COGR and the Association of American Universities (AAU) in submitting comments on proposed changes to the Federal Acquisition Regulation (FAR) that could impose cyber incident reporting and software bill of materials (SBOM) development/maintenance obligations on all federal contractors, including colleges and universities. </description><pubDate>Mon, 19 Feb 2024 17:29:33 Z</pubDate></item><item><guid isPermaLink="false">{F72618E4-9C62-4B77-8AB1-C93E54987C58}</guid><link>https://library.educause.edu/resources/2024/2/educause-comments-nist-sp-800-171-revision-3</link><title>EDUCAUSE Comments: NIST SP 800-171, Revision 3</title><description>EDUCAUSE submitted comments to the National Institute of Standards and Technology (NIST) on January 26, 2024, regarding the near-final draft of the NIST Special Publication (SP) 800-171 cybersecurity guidelines for controlled unclassified information (CUI) held in non-federal information systems (such as those of colleges and universities). </description><pubDate>Mon, 19 Feb 2024 17:06:01 Z</pubDate></item><item><guid isPermaLink="false">{1D16DD7C-B968-4FEC-A2E3-8C0F2916C6AD}</guid><link>https://library.educause.edu/resources/2023/11/the-cybersecurity-and-privacy-workforce-in-higher-education-2023</link><title>The Cybersecurity and Privacy Workforce in Higher Education, 2023</title><description>This report examines the cybersecurity and privacy workforce in higher education.</description><pubDate>Fri, 03 Nov 2023 15:04:30 Z</pubDate></item><item><guid isPermaLink="false">{0787FB7B-B5B4-4E70-89A1-44D63AD0D9E8}</guid><link>https://library.educause.edu/resources/2023/10/educause-comments-proposed-ada-web-mobile-app-accessibility-regulations</link><title>EDUCAUSE Comments: Proposed ADA Web/Mobile App Accessibility Regulations</title><description>EDUCAUSE submitted comments on October 3, 2023, in which the association expressed support for the proposed technical standard but urged DOJ to make compliance with the then-pending WCAG 2.2 standard as well as possible future versions of WCAG a compliance/litigation safe harbor. </description><pubDate>Wed, 25 Oct 2023 15:30:51 Z</pubDate></item><item><guid isPermaLink="false">{1F691F8B-917F-4FDC-A8DE-23929182C066}</guid><link>https://library.educause.edu/resources/2023/9/2023-educause-horizon-action-plan-generative-ai</link><title>2023 EDUCAUSE Horizon Action Plan: Generative AI</title><description>This report describes an ideal future for generative AI in higher education, drawing on the insights of a small panel of teaching and learning higher education experts, focusing on a 10-year timescale.</description><pubDate>Thu, 14 Sep 2023 17:39:55 Z</pubDate></item><item><guid isPermaLink="false">{D4F7FE4A-33B4-48FA-A8F4-A3B985C0785E}</guid><link>https://library.educause.edu/resources/2023/6/the-higher-education-cpo-primer</link><title>The Higher Education CPO Primer: A Welcome and How-To Kit for Chief Privacy Officers in Higher Education</title><description>The primary audience for this primer is a chief privacy officer (CPO) or a person with primary institutional responsibility for privacy. </description><pubDate>Wed, 31 May 2023 14:08:07 Z</pubDate></item><item><guid isPermaLink="false">{E064D8BF-E320-4D66-B66D-0370223FAB04}</guid><link>https://library.educause.edu/resources/2023/3/educause-comments-examples-of-tps-guidance-problems-arl</link><title>EDUCAUSE Comments: Examples of TPS Guidance Problems (with ARL)</title><description>&lt;br/&gt;EDUCAUSE joined with the Association of Research Libraries (ARL) to submit comments to the U.S. Department of Education regarding its February 2023 guidance on third-party servicers (TPSs). </description><pubDate>Fri, 31 Mar 2023 14:43:01 Z</pubDate></item><item><guid isPermaLink="false">{5264D709-AC66-4643-8E7D-860B8DA081D3}</guid><link>https://library.educause.edu/resources/2023/3/educause-comments-dept-of-ed-guidance-on-third-party-servicers-tpss</link><title>EDUCAUSE Comments: Dept. of Ed. Guidance on Third-Party Servicers (TPSs)</title><description>EDUCAUSE submitted comments to the U.S. Department of Education (ED) on March 7, 2023, in response to a “Dear Colleague Letter” (DCL) from ED reinterpreting the department’s regulatory guidance on “Third-Party Servicers” (TPSs). </description><pubDate>Wed, 08 Mar 2023 20:51:16 Z</pubDate></item><item><guid isPermaLink="false">{08BE861F-FAE7-4CF8-9497-0A423C48CBAF}</guid><link>https://library.educause.edu/resources/2023/3/2023-educause-horizon-action-plan-data-governance</link><title>2023 EDUCAUSE Horizon Action Plan: Data Governance</title><description>This report describes an optimized future for data governance in higher education, drawing on the insights of a small panel of data and analytics higher education experts, focusing on a 10-year timescale.</description><pubDate>Wed, 22 Feb 2023 17:49:39 Z</pubDate></item><item><guid isPermaLink="false">{1ECA8540-8BEA-423E-A7BD-28F195655F3D}</guid><link>https://library.educause.edu/resources/2022/10/student-data-privacy-and-security-a-call-for-transparent-practices</link><title>Student Data Privacy and Security: A Call for Transparent Practices</title><description>The results of our survey of U.S. undergraduate students to better understand students’ experiences with institutional data privacy and security.</description><pubDate>Wed, 28 Sep 2022 20:08:54 Z</pubDate></item><item><guid isPermaLink="false">{0392F002-E765-4CA6-977D-06F4AA625629}</guid><link>https://library.educause.edu/resources/2022/9/nist-sp-800-171-overview</link><title>NIST SP 800-171 Overview</title><description>This overview provides a review of the timeline that introduced NIST SP 800-171 "Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations" as a compliance framework, an overview of the control families for the 110 controls and a discussion of the impacts and concerns for higher education.</description><pubDate>Wed, 14 Sep 2022 16:00:01 Z</pubDate></item><item><guid isPermaLink="false">{611457BC-A06A-4447-974E-2714FF000FD8}</guid><link>https://library.educause.edu/resources/2022/9/nist-sp-800-171-toolkit</link><title>NIST SP 800-171 Toolkit</title><description>In this toolkit, you will find an overview of NIST SP 800-171 and its implications for higher education, questions to ask during project planning, 7 Things You Should Know About CMMC to use when speaking with stakeholders and leadership, and a customizable control evaluation.</description><pubDate>Wed, 14 Sep 2022 16:00:01 Z</pubDate></item></channel></rss>