This paper defines data protection as “the principles and processes for protecting data from corruption, misapplication, compromise, misuse, and loss.” Data protection leverages evolving technology and emerging practices to focus on how to apply the three critical information security imperatives: confidentiality, integrity, and availability.
BiographyTheresa serves as the Chief Information Security Officer and the Director of Records Management for North Dakota State University, Fargo, North Dakota. She is responsible for the oversight and coordination processes for building a university-wide information security strategy and program that encompasses policies, standards, and procedures. Additionally, she is responsible for policy, procedure and compliance for the university records management program.
Theresa has an undergraduate degree in computer information systems, masters degrees in business administration and management, and is a Certified Information Systems Auditor (CISA).
This report provides insight into the evolving CISO position—an understanding of which is critical to ensuring the strategic success of information security leaders in higher education.