[ISN] School hires new head of technology after data thefts

From: InfoSec News (alerts@private)
Date: Fri Mar 09 2007 - 00:03:40 PST


http://www.ohio.com/mld/beaconjournal/news/state/16859941.htm

Associated Press
Mar. 08, 2007

ATHENS, Ohio - Ohio University hired a new technology chief who will be 
in charge of computer systems that hackers once breached, compromising 
personal information of alumni, students and staff.

The university announced Wednesday that Brice Bible, 45, will become 
chief information officer April 16. He currently is interim chief 
information officer and assistant vice president for information 
technology at the University of Tennessee at Knoxville.

Bible will take over for OU's interim technology chief, Shawn Ostermann. 
He held the job while the university searched for a permanent 
replacement for Bill Sams, who stepped down last year.

The university last April discovered breaches in four computer systems, 
exposing about 367,000 files containing Social Security numbers, names, 
medical records and home addresses. The university later revised those 
numbers, stating that about 173,000 people's files were affected.

The school fired two administrators over the electronic break-ins and 
spent millions to upgrade computer security. There have been no proven 
cases of identity theft or fraud linked to the data thefts, university 
officials have said.

"The university made a lot of head way and is moving in the right 
direction," said Bible, who will supervise an $18 million annual budget 
and 150 employees. He will report to university President Roderick 
McDavis.

"Every person I have talked to here, from the president down, is 
committed to doing the right things to put the right 
information-technology services in place," Bible said.

Bible oversaw two computer privacy breaches at Tennessee.

In 2005, the names and Social Security numbers of 1,900 students and 
employees were inadvertantly released to the Internet by bursar office 
employees during a computer conference.

Then in July a hacker broke into a university computer apparently just 
to store and transmit movies, without releasing the names, addresses and 
Social Security numbers of about 36,000 past and current employees 
stored in the computer.


_________________________________________
Visit the InfoSec News Security Bookstore
http://www.shopinfosecnews.org



This archive was generated by hypermail 2.1.3 : Fri Mar 09 2007 - 00:07:24 PST