IT Service Status
Enabling the University to Conduct Its Business Securely
Information Security Office
The Information Security Office (ISO) mission is to enable the University to conduct its business securely while achieving regulatory compliance, data security and privacy, and the associated requirements in identity and access management. The office provides leadership and coordination in developing policies, standards, and access controls for the safeguarding of University information assets, raises the University community’s awareness of information security issues, promotes safe computing, and develops strategies for authentication and authorization services.
The Information Security Office’s primary responsibilities include:
- Directing IT security, policy, enterprise continuity, and identity and access management (IAM) strategy across the entire University
- Proactively mitigating IT security risks in partnership with distributed IT across Northwestern
- Implementing best-practice security, privacy, and IAM infrastructure and protocols
- Taking a risk-based approach to securing Northwestern’s information assets that enable teaching, learning, and research
- Providing guidance to the University community on IT security and compliance best practices to help individuals and departments protect University systems and data, as well as their own personal information
View the information security at Northwestern website
Reporting Units
Identity and Access Management
The Identity and Access Management team provides identity and access services to people and systems, enabling identity-based authentication and authorization for information technology systems at Northwestern.
Security Operations and Engineering
Information Security Operations and Engineering maintains a strategic approach to ensuring the confidentiality, integrity, and availability of Northwestern’s information resources and actively engages schools and departments in implementation.
Identity and Access Management
The Identity and Access Management team provides identity and access services to people and systems, enabling identity-based authentication and authorization for information technology systems at Northwestern.
More information
We are responsible for the development, testing, and dissemination of architectures, software, and practices in the areas of identity and access management at Northwestern and provides methods and technology to securely log on to University systems, including account management, authentication (including Multi-factor Authentication), directory services, and identity federation.
Contact Identity and Access Management
Security Operations and Engineering
Information Security Operations and Engineering maintains a strategic approach to ensuring the confidentiality, integrity, and availability of Northwestern’s information resources and actively engages schools and departments in implementation.
More information
We also provide managed-security services, risk assessments of third-party applications and systems, and maintenance and support of security applications and architecture across Northwestern. The team also supports University schools and departments on key IT security efforts and assists in incident response.
Contact Security Operations and Engineering
Nowell Arnold
Associate Director, Information Security and Deputy Chief Information Security Officer