This Campus Security Awareness Campaign 2017 post is one of twelve blogs with ready-made content designed to support information security professionals and IT communicators as they develop or enhance their security awareness campaigns. The May topic focuses on strong passwords, passphrases, and two-step verification.
Sandy Silk is the Director of IT Security Education and Consulting at Harvard University and a member of the Board of Advisors for the MS in Information Security Leadership at Brandeis University. With nearly 20 years of experience in both information security and adult education, she specializes in aligning data security programs and controls to meaningful business drivers, positive customer experience, and key performance indicators. At Harvard, Sandy leads a team of information security specialists who consult with researchers, faculty, and departments on security risks and controls for the data, technology, and vendors they use within their projects. She also developed and teaches the Information Security Foundations course within Harvard's internal IT Academy, as well as an external one-day workshop on Managing Information Security Risk. Prior to joining Harvard, Sandy held various technology risk management positions and led education and outreach programs for information security and risk management groups at Fidelity Investments, Bose Corporation, and Wellington Management Company. Her experience includes business continuity management, disaster recovery planning and testing, security risk assessments, incident response, privacy and security policy development, identity theft prevention and detection, and secure application development. Sandy has a bachelor's degree from Brandeis University, a master's degree from Harvard University, and a graduate certificate in Adult and Organizational Learning from Suffolk University.
HEISC Awareness and Training Working Group
HEISC Advisory Committee
HEISC Security Assessments Working Group