To fight against cyber security threats that are happening right now, OIT Security and Compliance is developing the NC State Cyber Security Incident Response Program to ensure each campus college, unit and department:
- has a basic understanding of the top cyber threats to its critical and sensitive systems.
- takes the necessary steps to prevent successful attacks.
- has a plan to respond in the event of a breach.
This year, Security and Compliance investigated a number of cyber security incidents including compromised servers and websites. Some of these attacks targeted sensitive data stored on the campus network. OIT was able to effectively respond to these attacks in a manner that reduced the financial, operational and reputational risks to the university. However, it became clear that the university needed a solid response and recovery strategy to train first responders to prevent missteps in reacting to cyber security incidents.
Under the new program, OIT is:
- developing incident response procedures and a flow chart to outline the necessary steps to effectively respond to a cybersecurity incident.
- providing general cyber security incident response training to help campus system administrators detect if their computers have been hacked and to determine what steps to take next.
- providing cyber security incident training to campus help desk professionals and other first responders to identify red flags in routine IT problem tickets.
- coordinating cyber security incident response workshops with colleges and departments to develop specific incident response plans for critical systems and systems that store or provide access to sensitive data.
The Cyber Security Incident Response Program is part of the university’s cyber security roadmap, slated to be implemented over the next three to five years. For additional information and to participate in this program, contact Leo Howell, OIT Security and Compliance assistant director of IT Policy and Compliance, at firstname.lastname@example.org.