1. Purpose

The Information Security Advisory Committee (ISAC) is a cross campus team representing the major work centers, business activities, information technology staff, and students. The team should be charged with the coordination of the following types of activities:

• Recommendation of practices, policies, and procedures for ensuring the security, privacy, and confidentiality of constituent records, and other sensitive information to ensure the University is in compliance with applicable government policies such as the Family Educational Rights and Privacy Act (FERPA) and the Gramm-Leach-Bliley Act (GLBA) and others.

• Review and revision of security and privacy programs to identify reasonable, foreseeable internal and external risks to the security, confidentiality, and integrity of constituent information or the information systems containing the information, that could result in the unauthorized disclosure, misuse, alteration, destruction, or other compromise of such information, and assess the sufficiency of any safeguards in place to control these risks.

• Design and implementation of programs to heighten awareness of policy and practices to ensure the security and confidentiality of constituent information, sensitive business information, and information systems; and to protect against any anticipated threats to the security or integrity of such information or systems.

The Information Security Advisory Committee (ISAC) will consist of the following representatives:

Co-chairs

Chip Matson, ITS

Co-chairs

Dr. Bill Dodd - Academic Affairs

Jeff Heck - Library

Denise Cooper - Personnel

Kathy Schofe - Public Information

Alana Powell - ITS

Bill English - ITS

Mary Filpus-Luyckx - Projects Office

Katherine Sweeney - Registrar/Admissions

Julian Veal - Business Office

Willene Holmes - Financial Aid

Jasper Cooke - Public Safety

Vera Boyll - Business Office (Secretary)