• Solutions
  • Solutions Overview
    • About Our Solutions
    • Determine Exposure to Real-World Threats
    • Perform Continual, Automated Testing
    • Assess Security Across IT Layers
    • Validate Security Controls
    • Connect Security Data to Business Risk
  • Solutions by Industry
    • Government
    • Health Care
      • Respond to the HITECH ACT
      • Validate HIPAA Compliance
      • Limit Unauthorized Insider Activities
      • Maximize limited security staffing
      • Drive down Web-based Security Risks
      • Insulate Your Networks from Unauthorized Devices
      • Diminish the Impact of Social Engineering
      • Validate security investments
    • Higher Education
      • Overview
      • Assess exposure to potential data breaches
      • Insulate networks from unmanaged devices
      • Limit unauthorized insider activities
      • Drive down web-based security risks
      • Maximize limited security staffing
      • Diminish the impact of social engineering
      • Validate security investments
      • Meet compliance demands
  • Solutions for Compliance
    • Validate Security Controls
    • FISMA / NIST
      • NIST 800-137
      • NIST 800-39
      • NIST 800-53
    • GLBA
    • HIPAA
    • PCI
    • SOX
    • CAG
• Products
  • Products Overview
  • CORE INSIGHT Enterprise
    Security Intelligence Solution
    • Overview
    • How It Works
    • Dashboards
    • Demos
    • Data Sheets and White Papers
    • Comparing CORE INSIGHT to CORE IMPACT
    • How to Buy
  • CORE IMPACT Pro
    Penetration Testing Software
    • Overview
    • What It Tests
      • End Users
      • Endpoint Systems
      • Mobile Devices
      • Network Devices
      • Network Systems
      • Web Applications
      • Wireless Networks
      • IPS/IDS, Firewalls and Other Defenses
      • Vulnerabilities Identified by Scanners
    • How It Works
    • Features and Benefits
      • Overview
      • Exploits You Can Trust
      • How Our Exploits Work
      • About Our Client-Side Exploits
      • About Our Agents
    • Vulnerability Scanner Integration
    • Reporting
    • What's New
    • Security Updates
    • Demos
      • Impact
    • Data Sheets, White Papers and Other Resources
    • Intro To Penetration Testing
      • What Is Penetration Testing?
      • Comparing Security Testing Options
      • What To Look For
      • Independent Penetration Testing Resources
      • Conducting Penetration Tests
    • Comparing CORE IMPACT to CORE INSIGHT
    • Training, Certification and Support
    • How to Buy
  • Core WebVerify Web
    Application Security Testing Software
    • Overview
    • Web Application Vulnerability Coverage
    • WebVerify vs. Scanners
    • Reveal Implications of Application Vulnerabilities
  • Core CloudInspect Cloud Security Testing for AWS
  • Demos and Evaluations
  • The Research Behind Our Products
  • Why Our Products are Safe
  • How to Buy
• Services
  • Services Overview
  • Core Security Consulting
    Services
    • Overview
    • Comprehensive Penetration Testing
    • Application Penetration Testing
    • Web Services Security Assessment
    • Source Code Auditing
    • Wireless Penetration Testing
    • Leading-Edge Technology Testing
    • How to Buy
  • CORE IMPACT Professional Services
    • Overview
    • Web Application Penetration Testing Services
    • Network Penetration Testing Services
    • Client-Side Penetration Testing Services
    • Wireless Network Penetration Testing Services
    • Benefits
    • How to Buy
• CoreLabs Research
  • CoreLabs Overview
  • Research Projects
  • Advisories
  • Publications
    • Presentations and Papers
    • Journals and Magazines
    • Internet Articles
  • Open Source Projects
  • CoreLabs Extranet Site
• News & Events
  • News & Events Overview
  • Events and Webcasts
    • Webcasts
    • Conferences
    • Speaking Engagements
  • News
    • Press Releases
    • In The News
  • Vulnerability Outbreak Alerts
  • Reviews
  • Awards
• Partners
  • Partners Overview
  • Strategic Partners
    • Business Partners
    • Technology Partners
  • Training Partners
    • CICT Training and Certification
  • Using Core's Products in Your Consulting Practice
• Company
  • Company Overview
  • Management Team
  • Board of Directors
  • Customers
    • Success Stories
  • Careers
  • Contact Us
• Blog
• Customer Portal

• Solutions

• Solutions Overview
  • About Our Solutions
  • Determine Exposure to Real-World Threats
  • Perform Continual, Automated Testing
  • Assess Security Across IT Layers
  • Validate Security Controls
  • Connect Security Data to Business Risk

• Solutions by Industry
• Government
• Health Care
  • Respond to the HITECH ACT
  • Validate HIPAA Compliance
  • Limit Unauthorized Insider Activities
  • Maximize limited security staffing
  • Drive down Web-based Security Risks
  • Insulate Your Networks from Unauthorized Devices
  • Diminish the Impact of Social Engineering
  • Validate security investments
• Higher Education
• Overview
• Assess exposure to potential data breaches
• Insulate networks from unmanaged devices
• Limit unauthorized insider activities
• Drive down web-based security risks
• Maximize limited security staffing
• Diminish the impact of social engineering
• Validate security investments
• Meet compliance demands

• Solutions for Compliance
  • Validate Security Controls
  • FISMA / NIST
    • NIST 800-137
    • NIST 800-39
    • NIST 800-53
  • GLBA
  • HIPAA
  • PCI
  • SOX
  • CAG

SHARE

Addressing Higher Education Security Testing Needs with Core Security

Organizations in the education sector face a litany of complicated security challenges driven by their need to protect IT assets and data while supporting networks that permit use by large numbers of individuals working across a wide range of academic and research pursuits. Engaging in frequent, proactive penetration testing using our products to safely replicate real-world hacking and malware threats empowers security professionals in higher education to isolate and prioritize their most critical vulnerabilities to more effectively address risks, ensure that defensive mechanisms are functioning properly, and prepare for mandated compliance audits.

Learn how conducting penetration testing at educational institutions can help you to:

• Assess exposure to potential data breaches
• Insulate networks from unmanaged devices
• Limit unauthorized insider activities
• Drive down web-based security risks
• Maximize limited security staffing
• Diminish the impact of social engineering
• Validate security investments
• Meet compliance demands

Please review the below resources for more information about CORE IMPACT’s relevance to university and college environments:

• Documents
• Webcasts
• Compliance Information

Documents

• CORE IMPACT Pro Overview Data Sheet
• CORE IMPACT Pro Business Case/Cost Justification
• Southern Illinois University Case Study
• University of North Florida Case Study
• Virginia Tech University Case Study
  

Webcasts

• Best Practices in Higher Ed Security Assessments: Virginia Tech’s IT Security Review Process
  Join Randy Marchany, director of the VA Tech IT Security Lab and SANS faculty member will share his insights from Virginia Tech’s proven IT Security Review process, which includes the proactive replication of threats originating from both inside and outside the university
  
  
• Comprehensive Penetration Testing with CORE IMPACT Pro
  View a recorded demonstration of network, endpoint, web application and wireless penetration testing with CORE IMPACT Pro.

Compliance Information

• The Payment Card Industry Data Security Standard (PCI DSS)
  Using CORE IMPACT to test your security measures is one of the easiest things you can do to comply with and validate multiple PCI requirements. IMPACT enables you to run regular, controlled and safe data breach attempts against your network, endpoint, web application and wireless security infrastructure. As a result, you can quickly and easily demonstrate whether your security defenses and response plans are in-place and working properly as mandated by the PCI Standard.
  
  
• The Heath Insurance Portability and Accountability Act (HIPAA)
  The Security Rule of the Health Insurance Portability and Accountability Act of 1996 (HIPAA) mandates that healthcare institutions implement appropriate information security policies and procedures to protect ePHI (electronic Protected Health Information) from "reasonably anticipated threats and hazards". Penetration testing with CORE IMPACT helps to ensure the integrity and confidentiality of patient information, while enabling you to abide by HIPAA security standards.
  
  
• The Gramm-Leach-Bliley Act (GLBA)
  The Gramm-Leach-Bliley Act (GLBA) was enacted in response to the rapid increase in Internet banking and online access to account information. The law stipulates that all financial institutions establish appropriate security standards to protect customer data from internal and external threats and unauthorized access occurring through online systems and networks. Penetration testing with CORE IMPACT helps you to secure your student, staff and employee information and comply with the GLBA. 
  
  
• The Family Educational Rights and Privacy Act (FERPA)
  Regular, proactive penetration testing with CORE IMPACT comprises a critical security control that can help your institution to address the Safeguarding Recommendations laid out in FERPA. Click the above link to learn more about FERPA on the U.S. Department of Education web site.