Data Privacy and Cybersecurity for Higher Education Institutions - Complimentary Webinar Series

February 16 - May 11, 2023

By: Barbara A. Lee, Amber L. Lawyer, Shannon A. Knapp, Philip J. Zaccheo, E. Katherine Hajjar, Jessica L. Copeland, Seth F. Gilbertson, Jane M. Sovern, Mario F. Ayoub, Gail M. Norris, and Gabriel S. Oberfield, Esq., M.S.J.

Session One: Data Privacy and Cybersecurity 101: What Higher Education Institutions Need to Know

February 16, 2023  |  Noon - 12:50 p.m.  |  Zoom Webinar

In the first of this six-part series, we will:

  • identify relevant departments and areas in higher education institutions (HEIs) that may face cybersecurity and data privacy challenges;
  • detail data privacy and cybersecurity laws that apply to HEIs;
  • lay the foundation to help HEIs understand current and future data privacy and cybersecurity risks; and
  • discuss risk mitigation strategies and compliance mechanisms that we will look at throughout this series. 

Presented by Barbara Lee, Amber Lawyer and Shannon Knapp

Click to view PowerPoint


Session Two: Mitigating Data Privacy Risk in Vendor Contracts

March 9, 2023  |  Noon - 12:50 p.m.  |  Zoom Webinar

Vendor relationships can present a variety of data privacy liability risks for institutions. These risks can arise in all varieties of vendor relationships, not merely those in the information technology space. In the second installment of this six-part series, we will focus on strategies for mitigating these risks when negotiating crucial vendor contract provisions, including: 

  • Security diligence prior to vendor engagement;
  • Standards for vendor data security precautions;
  • Liability limitations and caps;
  • GDPR, PIPL, CCPA, FERPA and other regulatory compliance obligations;
  • Standards for system access;
  • Breach notification obligations and responsibility for remediation; and
  • Cyber liability insurance requirements.

Presented by Philip Zaccheo and Amber Lawyer

Click to view PowerPoint


Session Three: Higher Education Policies and Procedures

March 30, 2023  |  Noon - 12:50 p.m.  |  Zoom Webinar

In the third installment of this six-part series, we will outline the importance of having proper policies and procedures in place for both data privacy compliance and cybersecurity risk mitigation. We will cover:

  • Why Cybersecurity and Data Privacy is Important to Higher Ed Clients;
  • Website Policies and Compliance;
  • IT-Specific Policies;
  • Employee- and Student-Specific Policies and Procedures; and
  • Incident Response Plans. 

Presented by E. Katherine Hajjar and Shannon Knapp

Click to view PowerPoint


Session Four: Higher Education Cybersecurity & Data Breach Response

April 13, 2023  |  Noon - 12:50 p.m.  |  Zoom Webinar

In the fourth installment of this six-part series, we will discuss:

  • Implementing or revising policies & procedures (including training) to mitigate the risk of data misuse;
  • Information management best practices;
  • A roadmap for responding to cyber incidents, intrusions and/or attacks; and
  • An overview of notification procedures and obligations.

Presented by Jessica Copeland and Seth Gilbertson

Click to view PowerPoint


Session Five: Data Privacy & Higher Education Marketing & Admissions

April 27, 2023  |  Noon - 12:50 p.m.  |  Zoom Webinar

The fifth installment of this six-part series will focus on the legal landscape of cybersecurity and data privacy laws impacting Higher Education Institutions in their admissions and marketing practices. The presentation will identify specific threats to higher education within these areas, and cover recent trends in cybersecurity, as well as litigation and legal guidance, and suggest best practices for institutions going forward to increase compliance and mitigate risk. 

Presented by Jane Sovern, Amber Lawyer and Mario Ayoub

Click to view PowerPoint


Session Six: Cybersecurity Insurance

May 11, 2023  |  Noon - 12:50 p.m.  |  Zoom Webinar

Cyber liability is one of the most significant risks facing higher education. Whether ransomware attacks, phishing emails or other cyberattacks, the risks of liability exposure for a cyber incident are becoming more prevalent every day. Insurance is the most common business practice for risk transference. Accordingly, cyber insurance policies hold more value today than ever. In the final installment of this six-part series, we will discuss: 

  • The basics of cyber insurance and why your institution has it;
  • The impact of the cyber insurance crisis in 2021-2022 on the marketplace;
  • The current state of cyber insurance underwriting and trends for the future; and
  • Tips for institutions as they renew their cyber insurance coverage.

Presented by Gail Norris and Gabriel Oberfield

Click to view PowerPoint