InfoSec Special Interest Group

Information Security (InfoSec) group

The EUNIS InfoSec group is focused on the current challenges of the information security field. The changing threat landscape of academic IT as well as the recently renewed privacy legislation present new challenges for many higher education organizations. The InfoSec group aims to share knowledge about information security development and compliance, as well as solutions to support the implementation of the GDPR from the information security point of view.


The implementation of information security measures supporting the GDPR has to be done in the next year. Also, the overall co-operation on the IT security topics would benefit many member organizations since the change in threat landscape requires more proactive and advanced countermeasures.


One of the tracks at the EUNIS Annual Congress is devoted to ICT infrastructure & Security. InfoSec group aims to continue this theme by working with some of the most interesting topics with IT security professionals from member organizations.

Purpose and Objectives

The objectives of the InfoSec are to:

  • discuss the higher education information security and privacy challenges and present and share ways of solving those challenges
  • share knowledge on topical information security threats, countermeasures as well as technical solutions
  • support GDPR implementation on the information security side
  • follow up on the threat landscape as well as the development of new privacy legislation
  • build a network of higher education information security and Data Protection professionals

This Special Interest Group aims to present a forum for information security professionals as well as data protection experts in order to build a strong network – one that both sides of expertise can find beneficial.

Current and future Activities

As a start of the InfoSec group a workshop on Data Protection and IT Security was organized in Berlin, in April 2017. We reached around thirty IT Security and Data Protection professionals around Europe and presented high-level speakers about GDPR. Also as a background work a presentation on The Threat Landscape in Academic IT From an IT Security Professional’s Point of View was given by Kenneth Kahri (University of Helsinki) at the EUNIS 2017 Congress. The next steps are to gather the members for the Task Force and building a plan for the following year. Among the activities a follow-up workshop was held on 12 December 2017 in Lisbon, Portugal. It was focused on the theme of GDPR in higher education and practical measures for implementation.

Bi-monthly meetings

EUNIS InfoSec group meets every 2 months for the informal virtual coffee breaks to discuss the hot topics in the are of Information Security in HEIs.

Recent workshops

  • EUNIS InfoSec online workshop on vulnerability testing. Read more here.
  • “Home Alone: information security for remote learners and workers”. Read more here.
  • “How to Make Cloud Services Secure” on 3rd of November 2020. Read the outputs from the workshop here.
  • “Data Protection and Cloud Services” on 27th of October 2020. Read the outputs from the workshop here.
  • GDPR and Information Security workshop, University of Malaga, Spain on 27-28 January 2020. Read the outputs of the workshop here.
  • How to hack a Web Application: To protect against hackers, you have to think as one! – EUNIS pre-Congress workshop, 4 June 2019, NTNU, Trondheim, Norway.
  • EUNIS GDPR and Information Security workshop was held at Brunel University, London, UK on 10-11 December 2018.

Mailing list

If you would like to be involved into the activities of the Information Security group, please contact the SIG Leaders: or