University Pledges to Boost Tech Security

By | Feb 15 2008 |

University administrators are in the primary stages of creating a task force that will look into how to enhance information security after the suspected theft of an external hard drive six weeks ago potentially exposed the Social Security numbers of 38,000 students, alumni, faculty and staff.

The 100-member task force will consist of University Information Services personnel and leaders from the university’s three campuses, “along with those familiar with specific data in areas including finance, human resources, student information and research,” the UIS release said.

Additionally, the release stated that Senior Vice President Spiros Dimolitsas and David Lambert, vice president and chief information officer for University Information Services, will co-chair a steering committee to “prioritize the focus and coordinate the organizational structure” of the task force.

The missing external hard drive, which was located on the fifth floor of the Leavey Center, contains the information of students, faculty and staff from 1998-2006, including 7,700 of students currently at Georgetown University and 25,000 of alumni. The hard drive, which was reported stolen on Jan. 3, had been used to back up a computer that contained billing information for student services including student health insurance and activities fees.

University Spokesperson Julie Bataille said the task force will work on a plan that would limit the university’s usage and storage of confidential data. She said that the task force will also consider how to ensure that the information is appropriately protected when it is necessary to “perform critical academic, business or research functions.”

“The effort is designed to intensify the data security protections University Information Services was already implementing prior to the recent data security breach,” Bataille said. She would not specify what security measures will be reinforced.

Bataille said that in 1999, the university began implementing GOCard numbers and NetIDs as primary means of identification.

In addition to implementing the task force proposal, University Information Services also plans to teach individuals how to secure data on laptops, personal digital assistants, USB keys and attached hard drives, Lambert said in the release.

University Information Services also plans to advise university offices on purchasing secure laptops and change its data-storage procedures so that sensitive personal information exists on hosts rather than on individual hard drives.

According to Bataille, Dimolitsas has released a list of information security responsibilities to university faculty and staff.

Dimolitsas and Lambert could not be reached for comment.

By Fiore (not verified) on 02/15/08 9:38 am

Wow, a task force! Bravo! Maybe in a year, there will be a committee to examine the effects of the task force and suggestions will be made followed by never-met deadlines and some sweeping under the rug of issues. Just like the Darnall cafeteria which still doesn't have walls or a floor!
If the student affairs office just followed standard protocols for this kind of thing instead of acting negligently (stupidly?) there would be no problem. There is no need for this task force, just the application of common sense and current standards with regards to information security.

By HoyaY (not verified) on 02/15/08 10:35 am

http://explore.georgetown.edu/news/?ID=31245

By Not Surprised (not verified) on 02/15/08 11:07 am

What a freaking joke! No one is being held accountable, and I'm not surprised. After criminal negligence we get a dog and pony show committee to let their butts continue to get undeservedly kissed. I hope someone sues them.

By Anonymous (not verified) on 02/15/08 3:26 pm

How about implementing standard security procedures immediately? Here's one to start with. . .don't store data on external hard drives, particularly ones that aren't encrypted or password protected.

By parent (not verified) on 02/15/08 7:10 pm

Jesuits need to take back Georgetown It is also very clear this paper does a poor job reflecting the real issues on campus.

By jwall4pres (not verified) on 02/15/08 7:20 pm

Why do you say that, parent?

By parent (not verified) on 02/15/08 10:50 pm

It appears the Jesuit approach to engage and accept diversity is being manipulated to the point all interests feel Georgetown should yield to their own beliefs and value systems. Why does each issue have to rebuff Jesuit values?

Review the past issues of the Hoya. I did. If the Hoya represents the heart and soul of the typical student, I'm reminded of the group that stands on the corner of M and Wisconsin selling bumper stickers "Stop Bitching, Start a Revolution". Same group every year.

Same stories every week.

The typical Georgetwon student is far more selfless, smarter and reflective than the Hoya portrays.

Stop whining.

By GUSA Presidential Debate (not verified) on 02/16/08 1:19 am

"The typical Georgetown student is far more selfless ..."

Um ... are you sure about that? I have my doubts ...

By anon (not verified) on 02/16/08 11:08 am

That's what they said to Woodward and Bernstein as they put the pieces of Watergate together. Not that The Hoya is taking down a president by any means, but someone has to keep asking the questions to keep the university responsible and the students informed. If you think it is whining, you must not like to read any paper. Check any major daily or international weekly magazine. You'll find what you could call "the same stories."

On the first article about the breach, there were over 70 comments within a week and the page has received over 10,000 hits. That's not bitching, that's informing. That's accountability. That's part of a revolution. You wouldn't know this if you're a parent, but the thefts were all that anyone was talking about on campus for days. The Hoya was a large part of that. Also, in part because of the crime coverage of The Hoya this year, there have been major changes in attitudes on campus. Administrators are making fundamental changes to the security structure, such as installing better lighting on campus and building a network of security cameras. All that came from "bitching."

SO, Parent, I would like to encourage you to follow your own advice, or at least to not commit the same error you charge The Hoya with. Stop bitching, and do something about it. A letter to the editor is a good start, and he may publish it in the newspaper. Encourage your kid at Georgetown (if you are a parent) to bring fresh ideas. Also, any suggestions yoy have would be welcome. The contact info is on the website. Send anything The Hoya could benefit from. There are a lot of valid criticisms you can make about The Hoya. That it only bitches is not one of them.

By Anonymous Comment (not verified) on 02/19/08 9:49 pm

When parents/students pay $40,000 a year to attend Georgetown, I think they expect (rightfully so) that the university will take some precautions to protect critical information like Social Security Numbers. It is disappointing to see that Georgetown needed an incident such as this one before the university decided to spend some money to protect this type of information. Identity theft is a serious issue - just ask anyone who has ever had their identity stolen. I think we have a right and responsibility to "complain" and bring these issues to light so they immediately get the attention they require.

Post new comment

Comments which are spam, off-topic, abusive, use excessive foul language or promote hate or bias will be deleted.

Anonymous comments will be held for moderation. This may take some time, so we recommend you create a free account.

The content of this field is kept private and will not be shown publicly.
  • Allowed HTML tags: <a> <em> <strong> <ul> <li>
  • Lines and paragraphs break automatically.
  • Web page addresses and e-mail addresses turn into links automatically.

More information about formatting options

CAPTCHA
This question is for testing whether you are a human visitor and to prevent automated spam submissions.
Image CAPTCHA
Copy the characters (respecting upper/lower case) from the image.