The protection of Controlled Unclassified Information (CUI) is a critical concern for UIUC’s research community. Many of our researchers are already working on projects from Federal agencies with CUI requirements in data handling, access, and protection. This presentation will discuss CUI at the University, its requirements for handling and protection, and the growing Regulated Research […]
Tag: Joe Sebright
Not So Scary ‘GRC’
Tags: Joe Sebright, Larry Dunham, Mark BaldwinA brief overview of some of the Governance Risk and Compliance teams operations focusing on the risk assignment process specifically ‘What happens when the risk is higher than normal?’ and job aids to help IT professionals with compliance to the University IT controls and Federal and State Regulatory requirements.
Third Party Risk Management at the University of Illinois
Tags: Joe Sebright, Josh Erenberg, Larry DunhamA successful information security program is built on the bedrock of risk management. One major area of digital risk comes from the University’s relationship with third parties. Digital risk management includes the identification and treatment of risk in information assets as well as allocation of resources necessary to treat risk. In this session, we will […]
Discovering Information Security Controls: IT01 Backup and Disaster Recovery Lab Exercise (Part 1 of 3)
Tags: Isaac Galvan, Joe SebrightThe university’s Information Security Controls Requirements provide implementation guidance to improve your information security and address the risk objectives specified in the standards. IT01 Disaster Recovery aims to limit the negative impact of a disruptive event on IT operations and ensure timely access to information assets. This workshop uses example data for a fictional department […]
Discovering Information Security Controls: IT01 Backup and Disaster Recovery Lab Exercise (Part 2 of 3)
Tags: Isaac Galvan, Joe SebrightThe university’s Information Security Controls Requirements provide implementation guidance to improve your information security and address the risk objectives specified in the standards. IT01 Disaster Recovery aims to limit the negative impact of a disruptive event on IT operations and ensure timely access to information assets. This workshop uses example data for a fictional department […]
Discovering Information Security Controls: IT01 Backup and Disaster Recovery Lab Exercise (Part 3 of 3)
Tags: Isaac Galvan, Joe SebrightThe university’s Information Security Controls Requirements provide implementation guidance to improve your information security and address the risk objectives specified in the standards. IT01 Disaster Recovery aims to limit the negative impact of a disruptive event on IT operations and ensure timely access to information assets. This workshop uses example data for a fictional department […]