Cyber Security Awareness Month: Defining University IT Security Today & Tomorrow

Due to unforeseen circumstances, this presentation has been cancelled. We look forward to your attendance at other CSAM events. For more information, visit


NC State Chancellor Randy Woodson has endorsed a far-reaching project to comply with a 2012 recommendation from the University of North Carolina General Administration (UNC-GA) to develop a common comprehensive information technology (IT) security framework. This framework will be based on the internationally recognized ISO/IEC 27002, a code of practice for IT security management published by by the International Organization for Standardization (ISO) and by the International Electrotechnical Commission (IEC),

ISO/IEC 27002 is one set of standards that both university internal IT auditors and NC Office of the State Auditor (OSA) IT assessors use to substantiate their findings and recommendations in IT audits. Utilizing ISO/IEC 27002, NC State has conducted a crosswalk of existing standards and documentation and gap analysis to assess its overall compliance levels. We are conducting a risk assessment, prioritization of remedial tasks, and initial estimates of manpower to cover the compliance gaps. This work will become the basis for future IT security planning.

Upon completion, the security framework will provide the means to secure university assets and information for all universities in the UNC system. This framework will also provide our university with a comprehensive and consistent set of internal IT security standards for internal and state auditors to verify. Come learn about the university’s progress and its plans to reach these objectives.

Workshop Pre-Requisites
There are no pre-requisites for this workshop.
Online Resources