The document discusses similarities and differences between information security approaches in academia and industry. Some key similarities include both sectors having limited security resources and challenges getting buy-in from top management. Differences include academia being better at sharing security information while industry focuses more on governance, risk, and compliance issues. The document provides recommendations for improving security in both sectors such as leveraging social networks and taking initiative after incidents.