Cyber Security for Title IV Schools: How Being a "Financial Institution" Changes the Paradigm

Abstract

This presentation is intended to inform participants about the role of a federal OIG, and the specific role and jurisdiction of ED OIG's Technology Crimes Division within the cyber-security framework of institutions participating in the Title IV Educational Assistance programs administered by the U.S. Department of Education. The presentation will also cover cyber security requirements mandated under federal law for participating Title IV institutions, and talk about recent communications regarding these requirements from the U.S. Department of Education. The presentation should inform participants regarding cyber security event reporting requirements, and anticipated U.S. Department of Education actions regarding compliance and enforcement in this area. Although primarily targeted at a cyber security audience, this presentation will likely be relevant as well to persons involved in the administration of federally-based student financial aid.