Technology transformed the paper world in which FERPA was initiated. Access to student records extends beyond the Registrar’s Office, but the Registrar is typically the compliance officer. Policies and procedures need to match the expanse of electronic access. Senior management is often unfamiliar with, but accountable for, the safe-keeping procedures of identity information. To reduce the gap between unfamiliarity and accountability, this two-phase, sequential mixed methods study will investigate the role of higher education leaders in the management of security for access to identity information. The first phase will be a qualitative analysis of interview responses from security experts about the expected role. Survey statements developed from the interview responses will be rated on a Likert scale by Georgia higher education leaders in the quantitative second phase. A comparison of the analyzed results with a framework may help leaders with practical applications of their role toward effective access security management