Dennis Devlin of Brandeis University knows the difference between training and education.
"To train someone is to show them what to do; to educate them is to show them why." Devlin says. CISO of Brandeis University, Devlin is an information security veteran with experience both in business and education, and he is familiar with the classic posture of security organizations: "Deny by default, allow by exception." In his current role, trying to raise awareness and compliance to security practices, Devlin is trying to reverse that course. In an interview, Devlin discusses: * Top security issues he faces today - including those unique to academic institutions; * His approach to improving security awareness; * Advice to other CISOs looking to improve awareness within their own organizations. Devlin is Chief Information Security Officer for Brandeis University. He has nearly four decades of information technology leadership experience in both private industry and higher education. During his career he has led enterprise-class initiatives in information security, digital privacy, identity management, networking, electronic messaging, disaster recovery and business continuity planning, emergency notification, and server and network operations. Prior to his current role Devlin was VP and CSO for The Thomson Corporation (now Thomson-Reuters), a member of the senior IT leadership team at Harvard University, and began his career as a developer, analyst and manager for American Hoechst Corporation (now Aventis). -- You received this message because you are subscribed to the Google Groups "nforceit" group. To post to this group, send an email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/nforceit?hl=en-GB.
