Click here to receive your FREE subscription to Campus Technology
Funding
Securing Security Dollars
IT security projects are continually under-funded, despite being a top concern for 2007. Here’s how to make the case for security investment.
4/13/2007
It's one of the paradoxes of the technology world: IT security continues to gain visibility as a pressing issue, but the funding for improved data protection doesn’t always flow. Two recent surveys illustrate this situation. In its 2006 Higher Education IT Security Report Card, CDW-G reported that 84 percent of surveyed higher ed IT directors and managers considered IT security one of their top-five priorities. But less than half of respondents said their executive administrators view IT security with the same sense of urgency. Eighty-one percent of respondents said their IT security budget allocations provide less than what they need. Meanwhile, an Accenture study, Enabling High Performance With Next Generation Infrastructure, showed that more than 90 percent of surveyed government and education IT executives listed security as one of their top two IT priorities for 2007. Yet only about 10 percent of respondents’ IT budgets have been earmarked for security.
Interestingly, since getting the funds to bolster security would seem to be an easy sell: News reports continue to document credibility-damaging data breaches affecting higher education. Last year, the University of California- Los Angeles, for one, reported that a database containing personal information on hundreds of thousands of students had been illegally accessed over a period of months.
UCLA is hardly alone: CDW-G’s survey reveals that more than half of higher education IT personnel experienced at least one IT security incident in the last year, and one third reported lost, stolen, or exposed data. CJ Spallitta, VP of global services at security services firm Cybertrust, says universities tend to be more susceptible to security incidents than other enterprises. Because universities posses data types that attract identity thieves—such as student names, Social Security numbers, and banking information—they are almost the perfect target, explains Spallitta. Plus, he says, “historically there has been an environment of openness and collaboration, and also budget constraints,” making higher ed especially vulnerable.
Stating Your Case
Building the case for security investment requires an ongoing dialogue between the IT department and an institution’s senior administration. When it comes to obtaining security funding, “a lot goes back to communication between those two groups,” says Joe Sartin, senior manager for higher education sales at CDW-G. At budget time, items that are “top of mind day in and day out tend to be where the money flows,” he adds. If security doesn’t have a high enough profile, the topic may not come up until something bad happens—which, essentially, is too late.
Recommended Reading
- California Community Colleges Partner with Waterfall Mobile on Statewide Emergency Notification Coverage
The Foundation for California Community Colleges (FCCC) has awarded a statewide emergency alert notification contract to Waterfall Mobile. The contract establishes Waterfall's AlertU as an approved technology through the official non-profit foundation for the California Community College (CCC) system office. Through this partnership, individual colleges may directly implement emergency communication services, eliminating lengthy technology evaluation and RFP processes.
- King's College and ASU Add e2Campus for Improved Emergency Notifications
King's College and Arizona State University have switched to Omnilert's e2Campus for emergency notification. Omnilert also has introduced a new program called the ENS Conversion Service that allows schools to bulk upload data from their previous emergency notification system into e2Campus at no charge.
- Saint Joseph Builds Out Wireless Network in Multi-year Upgrade
Saint Joseph's University has begun deploying a Meru Networks wireless local area network across its Philadelphia campus as part of a multi-year effort to bring wireless coverage to every building on campus.
- Vista Ramp Up Is Happening Now, Study Says
Organizations may have been slow to adopt Microsoft Windows Vista, but expect that to change by late 2008 to 2009, according to a Forrester Research report by Benjamin Gray et al., published last week.
- Talisma Launches New Version of CRM with Built-in Application Management
Talisma Corp. announced version 8.0 of its constituent relationship management (CRM) application for higher education. The new release includes application management, a revamped user interface, two-way text messaging, personalized Web portals, and an ADA-compliant Web client, among other enhancements.
- Bringing Composers into Classrooms Through Skype
Two Pennsylvania teaching colleagues with an interest in music and technology are bringing remote experts into classrooms at almost no cost, using Skype's free videoconferencing technology.
