Educause Security Discussion
mailing list archives
Re: Federal laws applicable to Universities
From: Carlos Lobato <clobato () NMSU EDU>
Date: Thu, 7 Nov 2013 21:47:49 +0000
I presented an "IT Compliance Framework for Institutions of Higher Education" at the 2013 Annual EDUCAUSE Information
Security Conference and 2013 ACUA Annual conference.
The slides are available at our IT Compliance website below or you can also find them at EDUCAUSE or ACUA.
Let me know if you have any questions and/or if you need me to send them to you directly.
Carlos S. Lobato, CISA, CIA, CISSP
IT Compliance Officer
New Mexico State University
Information and Communication Technologies
MSC 3AT PO Box 30001
Las Cruces, NM 88003-8001
Email: clobato () nmsu edu<mailto:clobato () nmsu edu>
IT Compliance at NMSU - http://compliance.ict.nmsu.edu/
From: The EDUCAUSE Security Constituent Group Listserv <SECURITY () LISTSERV EDUCAUSE EDU> on behalf of Francisco P?rez
<francisco.perez12 () UPR EDU>
Sent: Thursday, November 07, 2013 1:43 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Federal laws applicable to Universities
I know that FERPA, HIPAA( if healthcare data) and maybe PCI are applicable to Universities on the US. But there is any
other federal laws applicable or that Universities need to comply with?. Just working on fundamental laws for IT
Compliance on Universities.
Will appreciate your comments.
Information System Office
UPR-Medical Sciences Campus
francisco.perez12 () upr edu<mailto:francisco.perez12 () upr edu>
Confidentiality Notice: Any use, review, distribution or copying of this communication by anyone other than the named
recipient(s) is strictly prohibited. Please notify the sender immediately by e-mail if you have received this e-mail by
error and delete this e-mail from your system.
Please print this email only when necessary.