Issue link: http://uwashington.uberflip.com/i/509241
OBJECTIVES FOR 2015 The sidebars next to the articles throughout this report reȵect our progress on our 2014 objectives. In 2015, we will focus on the following: • Enhance situational awareness • Expand cyber threat intelligence • Continue to develop training and education resources • Collaborate with departments on evolving risk management program and security plans • Formalize ongoing review of CISO programs • Continue leadership role in regional cybersecurity industry eorts • Remain vigilant and current on operational capabilities • Update Incident Management Policy and associated practice sets GOVERNANCE Now more than ever, information security and privacy leadership and governance groups need to collaborate to determine the best way to manage risk while supporting the University's boundless opportunities and worldwide initiatives. In 2015, the Privacy Assurance and Systems Security (PASS) Council will increase its role by working with new and existing governance groups to provide more insight and oversight on risk, and advise members of the UW community toward a more holistic and strategic direction on information security and privacy. UW Office of the CISO WRITING: Melissa Albin-Wurzer, Kirk Bailey, Ann Nagel, Daniel Schwalbe PRIVACY PUZZLE: Kirk Bailey PHOTOGRAPHY: 1909 photo: University of Washington Libraries, Special Collections, Nowell x1971, UW photo database, Melissa Albin-Wurzer Page 9 photo: From "Raven brings light to this house of stories" exhibit, Suzzallo Library INFOGRAPHIC: Daniel Schwalbe UW Creative Communications DESIGN: Karin Mellskog, Jessie Schutzenhofer PROFESSIONAL NET WORKS AND INFORMATION SHARING We have built a global network of trusted colleagues and informa- tion sources that provide timely intelligence for a strategic advantage in keeping the University's information assets private and secure. We either lead or actively participate in a variety of information shar- ing groups. Through these groups, we regularly confer with security professionals, experts, and leaders in industry, research, law enforce- ment, military, government, and higher education. 2014 See our accomplishments Information Security and Privacy Risk Management Tools and Resources web pages published 2014 INFORMATION SECURITY AND PRIVACY ANNUAL REPORT 1 1