Identifying and addressing IT risk isn't a task for an institution's IT department alone. Elevating IT risk discussions to a strategic level places institutional leaders in a better position to understand the broad categories of IT risk.
BiographyCathy Bates is currently Associate Vice Chancellor and Chief Information Officer at Appalachian State University. She is responsible for providing vision and senior leadership for the development, coordination, and use of technology to enable essential innovation in research, learning, and administrative processes. She has been involved in Higher Education since 1988, holding technology management and leadership positions at Plymouth State University, the University of New Hampshire and the University of Arizona.
With significant experience leading technology units in a constantly changing environment, she has been recognized for her ability to create and revitalize service organizations that support and enhance institutional strategic objectives, as well as inter-institutional collaborations. Ms. Bates has a Bachelor's degree in Applied Computer Science and a Master's Degree in Leadership and Technology.
This blog post is one of a series of posts designed to "continue the conversation" after the 2016 EDUCAUSE Security Professionals Conference. This post explores the themes discussed during a lunchtime roundtable about using IT risk registers to supplement campus risk management activities.
This report provides insight into the evolving CISO position—an understanding of which is critical to ensuring the strategic success of information security leaders in higher education.