Pathway to PCI DSS Compliance
for SUNY Institutions
Higher education institutions are amazingly complex organizations and their scope for compliance regulations is wider than other industries. While virtually every industry faces significant cybersecurity challenges, higher education is particularly vulnerable.
The degree of openness and transparency within higher ed has historically placed a focus on making sure that faculty, students, staff, the public, and donors can connect easily to resources – including payments across possibly numerous networks. This has made college and university networks an open and inviting target.
Learn how the State University of New York Plattsburgh attained and retained their PCI DSS compliance through this informative webinar exclusively for SUNY System institutions.
Associate Director of Student Financial Services
Gregory Withrow is the associate director of Student Financial Services at SUNY Plattsburgh. He previously worked for colleges and non-profit organizations in Kansas City, Missouri and for a major bank in Cincinnati, Ohio. Greg is a former president of the New York State Organization of Bursars and Business Administrators, was a member of the leadership council for the New York State Higher Education Services Corporation, chaired the SUNY Bursar sub-committee, and was on the board of directors of the Kansas City chapter of the Institute of Management Accountants. Honors include a Chancellor’s Award for Excellence in Professional Service, a President’s Award for Distinguished Service, Dedication and Commitment from NYSOBBA, and an Award for Outstanding Leadership from the State University Business Officers Association. Greg earned bachelor’s degrees from Northern Kentucky University, master’s degrees from the University of Kentucky and SUNY Plattsburgh, and a certificate from AMI.
Security Advisor, CISSP, QSA
Jeff has worked in the Information Technology (IT) industry for over 20 years, which includes 15 years of Information Security experience. Jeff began his career as an IT Engineer providing services to companies that did not have their own Computer Services department. He then moved into the health care industry as an Information Security Analyst, where he expanded his knowledge to include HIPAA (Health Insurance Portability and Accountability Act) and SOX (Sarbanes-Oxley) security practices in addition to the normal duties of protecting critical systems and confidential information. At Bowling Green State University (BGSU). There he was responsible for many aspects of information security, including being responsible for assisting the University in becoming compliant with the Payment Card Industry Data Security Standard (PCI DSS). At CampusGuard, he assists other campus-based institutions to increase their knowledge of information security along with helping them reach compliance.
Director of National Business Development
Andy Grant has over 20 years of hands-on experience working in campus-based environments in numerous areas of information technology, ranging from front-line support to managerial oversight. As the Director of National Business Development and a member of the CampusGuard Leadership Team, Andy is responsible for discovering new business relationships and developing and maintaining solid, long-term alliances with CampusGuard customers and partners. Prior to joining CampusGuard, Andy spent 15 years in higher education involving strategic decisions, as Director of Business Operations for a large state university.