You are a champion: How you help protect UD

Week 3 of National Cyber Security Awareness Month is all about cybersecurity on the job. Although most of us don’t have security-related titles, we all use data and technology. To cybercriminals, that means each of us is a potential target. In the last month alone, we’ve seen business email compromise scams and vishing scams hitting inboxes and phones across campus. Why is that? What can you do about it? That’s what we’ll explore in this week’s article!

What do cybercriminals want from us?

Institutions of higher education are unique from other organizations in that they process a much wider breadth of data in a much more open environment than, say, banks or insurance companies. As they tackle challenges and pursue opportunities, UD faculty and staff constantly work with a variety of data sets:

• Education records (subject to FERPA)
• Protected health information (subject to HIPAA)
• Financial information (subject to GLBA and PCI DSS)
• Personal information, including Social Security numbers and tax forms
• Research data subject to many legal, regulatory, and contractual requirements
• Intellectual property.

Employees also have access to accounts, systems, and devices that help manage this data.

For cybercriminals seeking data, money, or notoriety, institutions like ours present tempting targets. Of course, there are the stereotypical script kiddies and dark web hooligans most people envision when they hear the word “hacker.” But the FBI and NSA warn of state-sponsored cyber agents tasked by their governments to steal research and compromise infrastructure. A recent publication by EDUCAUSE, REN-ISAC, and the National Student Clearinghouse emphasizes the dangers facing higher education institutions and highlights the roles registrars, enrollment managers, and others play in safeguarding our students’ and University’s data.

 

How are we protecting UD?

Security is a community effort. Across our University, everybody plays a role in protecting our data, devices, systems, and people from cybercriminals.

Central IT provides several core security services for our entire campus community. By investing in the University’s security infrastructure at the institutional level, IT is able to provide scalable solutions that create the foundation for our community’s security. Our team backs up key systems, administers computers, resolves vulnerabilities, and performs countless other tasks behind the scenes, allowing you to focus more of your time on your other priorities. Beyond that, IT partners with the US Department of Homeland Security and other organizations to share knowledge, skills, and services that help protect each of us from cybercrime.

Your college or department may also have IT professionals who collaborate closely with your unit and central IT to support your unique technology and data needs. IT pros help administer security for their constituents, using their specialized knowledge of your unit’s needs to choose the best fitting solutions for your environment.

 

Together, we can make a difference

Cybersecurity isn’t a challenge for IT staff alone. Each of us is in control of our own security. As community members, each of us also have a role to play in our collective security. Even if security isn’t your full time job, it’s an important piece of our responsibility to our students, employees, partners, and all others who entrust us with their data.

Join us in committing to a secure UD:

• Be aware. Know the value of your work and the resources that support it. Acknowledge how your actions contribute to our shared security.
• Be responsible. Others have entrusted us with their data; treat it like you would want them to treat yours. Make conscious decisions about how you use and protect data, systems, and devices.
• Be a champion. Let your dedication to our community be an example to others. Encourage your peers to make their own commitments to cybersecurity.

Ready to make a difference? Try these top tips for security at work:

1. Enroll in UD IT’s computer security management service
   This tool automates many of the routine security tasks you’d otherwise have to manage yourself: anti-virus scanning, software updates, backups, and more. Contact the IT Support Center for more information.
2. Get your training certificate (and an entry into our prize drawing!)
   Complete Phase II of your 2018 Secure UD Training to develop critical cybersecurity knowledge and skills. It’ll take less than half an hour. Finish by Halloween and earn an entry into our National Cyber Security Awareness Month prize drawing! Visit our NCSAM resource center for more information.
3. Feel like something’s wrong? Speak up! Your vigilance helps keep you, your colleagues, and our community safe. If you notice suspicious activity or have a question, contact secadmin@udel.edu. You can also forward suspicious emails to reportaphish@udel.edu.

 

Interested in more?

Explore our NCSAM resources and learn how to enter our prize drawing by visiting our NCSAM resource center!

Thinking about pursuing a degree in cybersecurity? Get in touch with UD’s Cybersecurity Initiative! UD CSI is hosting a series of brown-bag discussions to mark October as the 15th annual National Cyber Security Awareness Month (NCSAM). Topics include:

• Cybersecurity in the Workplace is Everyone’s Business (Oct. 11)
• Today’s Predictions for Tomorrow’s Internet (Oct. 19)
• The Internet Wants You: Consider a Career in Cybersecurity (Oct. 25)
• Cybersecurity Preparedness in Corporate America—What are we missing? (Oct. 30)

All sessions will take place from noon-1:00pm in the iSuite, 132 Evans Hall. For more information, visit the CyberSecurity Initiative website: https://csi.udel.edu/2018/10/csi-brown-bag-lunches/

Students can develop their cyber skills through these opportunities offered by the Department of Electrical and Computer Engineering:

• Tech Talk Tuesday (T3)—Co-sponsored by UD CSI… Join JPMC for a tech talk on hacking! (Oct. 23, 5pm)
• VIP Information Session—Students from all majors are needed for teams! (Oct. 24, 5pm)

Visit us during the Tech Open House on October 23! Be sure to stop by the Trabant Multipurpose Room between 11:00am and 2:00pm to explore IT’s many services, discuss how IT can help keep you secure, and enjoy a free lunch.