IAP: Data Protection @ MIT

There is one more chance to attend the Data Protection @ MIT session provided for IAP: Thursday, Jan. 26 @ 1-2:30 pm in E17-121

This session addresses two main questions: “What is MIT doing to protect sensitive data?” and “What can each of us do to protect sensitive data at MIT?” Learn about measures for handling, sharing, storing, and destroying information that requires protection by law. Bring your questions and feel free to participate in the discussion. No registration required, just show up.

IAP: Data Protection @ MIT

What are you doing to protect data at MIT? To learn what you could be doing, come to one of the two IAP sessions “Data Protection @ MIT.”

  • Thursday, Jan. 12 @ 1-2:30 pm in E17-121
  • Thursday, Jan. 26 @ 1-2:30 pm in E17-121 (repeat)

This session addresses two main questions: “What is MIT doing to protect sensitive data?” and “What can each of us do to protect sensitive data at MIT?” Learn about measures for handling, sharing, storing, and destroying information that requires protection by law. Bring your questions and feel free to participate in the discussion. No registration required, just show up.

Also, this month EDUCAUSE is sponsoring Data Privacy Month, in support of Data Privacy Day which is on January 28. The event is celebrated with events, activities, internal corporate and educational initiatives designed to raise awareness among employees.

Data Privacy Awareness in January

Data Privacy Day on January 28, 2012 is aimed at raising awareness around the importance of protecting personal identities. EDUCAUSE is expanding the day into a whole month of activities and resources around this topic.

Here at MIT we handle, share, store and dispose of personal information on a regular basis. Are we doing what we can to protect this information from exposure?

If you would like to find out more, come to one of the two IAP sessions entitled “Data Protection @ MIT” this January on the 12th and 26th from 1:00 – 2:30 pm in the E17 Learning Center. It is hosted by Monique Yeaton and Tim McGovern of the IT Security Systems and Services team in IS&T.

UPDATE: IAP Protecting Personal Information @ MIT

Here’s an update to the next IAP session on Protecting Personal Information @ MIT, hosted by Tim McGovern and Monique Yeaton:

The next and final session is being held on January 27th in a new room number and will run a half hour longer. The first session showed us that additional time was warranted due to the length of the questions and discussions after the presentation.

Note the room and time change if you plan to attend.
Time: 1 – 2:30 pm
Location: 4-237 (same building, just upstairs)

Hope to see you there!

IAP Session on Protecting Personal Information

Tim McGovern and Monique Yeaton of the IT Security team will be hosting an IAP session on Protecting Personal Information at MIT. This is an update to the 2010 IAP session on Handling Sensitive Data.

We will discuss:

  • What MIT has been doing over the last year to help reduce MIT’s risk of a serious data breach involving personal information.
  • What each of us need to do in our own offices, and on our computers, to minimize the collection of, and to protect sensitive data needed for our business activities.

There will be an opportunity to ask questions and participate in the discussion. This is a mostly non-technical session, although we will talk about technology tools that can help in this effort. We hope to see you there!

See the IAP site for full information.

MIT’s Written Information Security Program

If you have attended an IAP Session on Handling Sensitive Data in the last few years, you are likely to have heard about the data breach notification law that went into effect in Massachusetts on October 31, 2007. Meant to protect residents from identity theft and fraud, the law now includes rules for handling selected types of personal information.

In response, MIT is rolling out a campus-wide Written Information Security Program (WISP), which includes administrative, technical, and physical safeguards for this type of data at MIT.

You can find the WISP here (pdf).

Event: IAP Seminar on Protecting Personal Information

As many of you may already be aware, Massachusetts has issued regulations regarding the protection of personal information such as social security numbers, credit card numbers, and bank account numbers.

In order to comply with those regulations, MIT will be implementing a new information security program, effective March 1, 2010.  This program will include specific requirements for individuals that handle the personal information of others, such as HR, finance and other administrative functions.

An IAP session (repeated 3 times) is being offered to give members of the community a chance to hear about this new program, as well as recommendations for protecting sensitive data in general.

  • Tuesday, Jan 12, 10-11:00 am, 56-114
  • Wednesday, Jan 13, 12-1:00 pm, Student Center (room to be listed soon) food is allowed – bring your lunch! light dessert will be provided.
  • Thursday, Jan 21, 3-4:00 pm, 56-114

For more information.

If you handle personal information or other sensitive information, this is a good opportunity to learn about the upcoming information security program, and ask questions about specific issues you may have.

If you are not able to attend one of the IAP sessions, or you would prefer to have the information shared at a departmental staff meeting, please feel free to contact either Allison Dolan at adolan@mit.edu or Monique Yeaton at myeaton@mit.edu.