Skip over navigation

Who we are

While all individuals in the University have a role in securing the University's information, there are two functional areas that have been specifically created to ensure that IT security-related issues are addressed and to assist you in performing your security-related duties:

University IT Security Officer - Anthony Scaturro


     
  • IT Security program oversight, policy development, education & awareness, compliance, business process & project consulting, remediation
  • Phone:  (609) 258-4611
  • E-mail:  scaturro@princeton.edu  

OIT’s Security & Data Protection Group - Steve Niedzwiecki (Manager)


  • IT security infrastructure management, product research & deployment, technical consulting, implementation support, computer forensics
  • Phone:  (609) 258-1618
  • E-Mail:  steven@princeton.edu

The following sections provide a more detailed list of the specific duties of both groups.

Primary functions of the IT Security Officer

  • Develop the University's overall IT security vision.

  • Oversee and direct the IT Security Program.

  • Develop information security policies and guidelines.

  • Promote security awareness across the various University constituencies.

  • Assist department managers and their staff members in properly securing the University's information by:
    • providing functional guidance as IT projects are envisioned and planned,
    • reviewing departmental procedures to ensure compliance with applicable legislation and contractual obligations,
    • facilitating interactions with subject matter experts (e.g., General Counsel, Audit/Compliance, Risk Management, Public Safety, Information Guardians),
    • conducting information security seminars on IT security-related responsibilities, best practices, risks and countermeasures, and
    • working with departmental teams as they develop their response to audit findings.

Primary functions of the Security and Data Protection Group (SDP)

  • Build, manage, operate and monitor the University’s IT core security infrastructure.

  • Research, recommend and deploy products that satisfy University policy requirements and meet compliance targets.

  • Develop technology best practices relating to the deployment and use of IT security hardware and software.

  • Provide computer forensic support as necessary.

  • Assist the University’s technology implementation and support staff by:
    • providing technical guidance as IT projects are envisioned and planned,
    • reviewing technical designs of planned and existing systems,
    • assessing the security effectiveness of the system and application deployments, and
    • conducting seminars on the appropriate use of IT security-related products and how to secure commonly used technology products.