About the Information Security Team (IST)
Trinity College’s Information Security Team (IST) is dedicated to safeguarding the confidentiality, integrity, and availability of all information systems, data, and identities. Our mission is to provide proactive security expertise, maintain resilient infrastructure, and foster a culture of security awareness and compliance across the institution.
Key Functions of the Information Security Team
Policy Management:
We lead the development and implementation of security policies and standards to protect Trinity’s critical resources and services. We ensure compliance with evolving security laws and regulations, working closely with college leadership and departments to meet security goals and regulatory requirements.
Awareness & Education:
We empower the Trinity community with the knowledge to identify and mitigate security risks. We promote secure behaviors through interactive learning modules, webinars, departmental training, and personalized sessions and keep everyone informed on the latest threats and best practices.
Vulnerability Management:
The IST identifies and addresses security vulnerabilities across the institution. We conduct regular vulnerability scans, penetration testing, and risk assessments, working with the Infrastructure and Applications teams to remediate any weaknesses swiftly.
Risk Assessment & Management:
We provide thorough security reviews and risk assessments for IT projects, vendors, and purchases. We ensure all projects meet Trinity’s security standards by assessing new technologies and evaluating compliance risks. Our IT Security Questionnaire helps streamline this process.
Regulatory Compliance:
Our team works closely with departments to ensure compliance with key regulations such as FERPA, GLBA, PCI-DSS, and HIPAA. We collaborate to create system security plans and ensure adherence to policies and procedures that protect our community’s sensitive data.
Incident Response:
In the event of a security incident, the IST leads the response, coordinating resources, managing threats, and guiding best practices. We conduct post-incident reviews to identify root causes and ensure continuous improvement. Our training programs help prepare the Trinity community for effective incident management.
Business Continuity & Disaster Recovery (BC/DR):
We regularly test comprehensive BC/DR plans to ensure Trinity can recover quickly from disruptions. We assess the criticality of applications and services, setting recovery objectives to minimize downtime. During real-world emergencies, the IST supports the execution of recovery plans, ensuring business continuity.
