Issue link: http://uwashington.uberflip.com/i/111145
2013 2013 Goals Risk Management and Intelligence Release the first phase of the Information Assurance Atlas. In collaboration with other UW units, publish UW Data Sharing Memorandum of Understanding for use by UW units when they share data. Create an example of a high-level system and service lifecycle diagram. Policy Update Administrative Policy Statement (APS) 2.4 Information Security and Privacy Roles, Responsibilities, and Definitions and APS 2.5 Information Security and Privacy Incident Management Policy. Publish University Social Security Standard in collaboration with several offices across the University. Operational Management Increase level of automation of spam detection and mitigation capabilities to reduce the need for manual intervention. Integrate existing tools for better correlation and event detection. Deploy additional tools and strategies to meet business intelligence needs. Privacy Publish Privacy Briefs on the following topics: profiling vendors��� security and privacy IQ, information security and privacy implications associated with big data, understanding the fundamental differences between opt-in and opt-out, how the European Union privacy laws affect UW. Education Expand the online training to include Security and Privacy 101, 201, and 301. Host a ���due care��� seminar, with subject matter experts, to discuss the common compliance requirements facing UW. Develop a student internship program for information security and privacy education. 2013 Seminars In 2013, the Office of the CISO will hold Information Assurance Seminars on topics relating to information security and privacy best practices and risk management strategies. Seminars will be announced on the ���Events��� page on our website. Additionally, members of the Office of the CISO team are available to have face-to-face discussions with your UW department or unit to discuss recommendations, smart computing practices, or questions regarding safeguarding UW institutional information. More info: ciso.washington.edu/events/ 2012 INFORMATION SECURITY AND PRIVACY ANNUAL REPORT UW OFFICE OF THE CISO 9