Skip to Content



Monday, June 1, 2015
Omni Hotel - Downtown Charlottesville
Registration only $50*

The Information Security, Policy and Records Office (ISPRO) is pleased to announce the 2015 UVa ISPRO Conference scheduled for June 1, 2015 at the Omni Hotel, adjacent to the historic downtown Pedestrian Mall in Charlottesville, VA

This annual event will include information sessions on records management, information security, UVa information policies, and speakers from various departments within the University.

The day will close with a raffle for some wonderful prizes donated by our vendors.


(IMPORTANT On-site registration will not be accepted.)

Conference Schedule: Conference session descriptions will be posted outside of each break-out room. If you would like to have your own full copy of the Conference Program - including session descriptions and session locations - you can download, print and bring it with you. Conference programs will not be available the day of the event. Please think twice before you print!

	icon Print a copy of the Conference Program including session descriptions

ISPRO Awards: Nominations are now being accepted by clicking here

Information For Participating Vendors

Participating Vendors (as of May 21, 2015)

Conference Schedule & Program

8:00 - 8:45

Registration, socializing, morning refreshments, and greet the vendors!

8:45 - 9:00 Welcome & Opening Remarks
9:00 - 10:10 General Session: In Pursuit of Information Governance: Seven Self-Evident Truths
Jason R. Baron, Esq., Drinker, Biddle and Reath, LLP

Mr. Baron's biography is available by clicking here.

In a world of Big Data, institutions of all types are facing new challenges involving the managing of information, both from a risk perspective, as well as in using analytics to find value in the data they collect. Taking lessons from recent headlines, this presentation will highlight the emerging area of "information governance" to show how we can make progress in managing records and data in all forms.

10:10 - 10:25 BREAK
10:25 - 11:20 Breakout Sessions (A)

Green Eggs and Spam: not just for dinner. Why it's inevitable that you're going to get SPAM. Jer Kong - ISPRO

Recipes: What can I do to process SPAM?
Pairings: What Spam and Phish smells like?
Side Dishes: What comes with Spam for free? 3rd party Opinions: Guidance/Reviews of Select Phishes.
Reject Spam: Why you should never tell the chef it's awful.


Records Management Update. Caroline Walters, Jessie Graham, and Jessica Tyree - ISPRO

What's new and what's not in the Records Management Office at UVa


Three common data security mistakes we all make and how to avoid them. Tim F.J. Tolson - ISPRO

With the dizzying array of data security standards such as FERPA, ITAR, HIPAA and FISMA, the confusing options for data storage and transfer, and the overwhelming pace of our day, it's no surprise we fail to protect administrative and research data properly. Come learn three common data protection mistakes at UVa and what you can do to stay off the front page of the newspaper.

11:25 - 12:20 Breakout Sessions (B)

Anatomy of a large-scale breach Tony Townsend - ISPRO

Every day seems to bring another report of a huge amount of data being stolen. Have you ever been curious how this happens? Why is it so seemingly easy for hackers to get into online databases? Tony Townsend will analyze several of the most most public data breaches in the past two years, looking at how the hackers gained access, what data they obtained, what they did with it and how the breaches might have been prevented.


Physcial Records Storage The Supply Room, EDM Americas, Patterson-Pope/FIlesolv

Do you have paper records sitting around waiting until they have met retention? Why not store them with a storage vendor who will take all the heavy lifting off your shoulders and back? This session will review storage standards, and let you hear from the two vendors on contract with the University.  Plenty of time for questions and to help you decide where you should keep your records.


Freedom of Information Act (FOIA) at UVa. Faith Hill - FOIA Officer

The Virginia Freedom of Information Act (FOIA), located in § 2.2-3700 et. seq. of the Code of Virginia, permits citizens of the Commonwealth and representatives of the media access to the public records of public bodies, public officials and public employees. What are public records? Are my emails or other records subject to release to the public? What about records that contain personal information? This workshop will discuss the basics of FOIA compliance and what you should do if you receive a FOIA request.

12:20 - 1:20 LUNCH - ISPRO Award Presentations
1:25 - 2:20 Breakout Sessions (C)

Highly Sensitive Data: What it is and why it matters? Martin Peterman - ISPRO

Highly sensitive data is the most expensive data on your computer. Attackers want it and it's our job as UVa employees to protect it. At this session, learn how to identify it and who to ask for help with storing it and destroying it. Also, learn how easy it is for the bad guys to get it.


Disaster Recovery. Caroline Walters (ISPRO) and Belfor Property Restoration

Learn about the problems with handling a disaster in your office space, from the smallest water leak to a major event.


Finance Outreach and Compliance. Kelly J. Hochstetler - Director of Finance Outreach and Compliance

Learn about the newly created office of Finance Outreach & Compliance and their plans for staff development, procedure/process improvement, and compliance program enhancements. In addition to learning about the office, attendees will have an opportunity to provide suggestions on future office projects and training programs.

2:20 - 2:35 BREAK
2:35 - 3:35

ISPRO Update. Brian Davis, Director of Information Security, Policy & Access / Caroline Walters - University Records Officer

Get to know the CISO. Kathy Kimball, UVa Chief Information Security Officer

Meet the new Chief Information Security Officer at UVa and hear about the strategic direction of Information Security and threats UVa faces daily to protect our information and information systems.

3:35 - 4:00 Conference Wrap Up, Closing Remarks & Drawings for the Door Prizes

*The registration fee for the conference is $50 per person. On-site registrations will not be accepted. If you find you are unable to attend, you must cancel your registration by May 22nd or your PTAO will be charged the full registration fee. To cancel your registration or for any other questions regarding the conference, send email to