1 Ben Woelk RIT Information Security Office Advancing Digital Self Defense Establishing a Culture of...
-
Upload
jane-lisa-moody -
Category
Documents
-
view
217 -
download
0
Transcript of 1 Ben Woelk RIT Information Security Office Advancing Digital Self Defense Establishing a Culture of...
![Page 1: 1 Ben Woelk RIT Information Security Office Advancing Digital Self Defense Establishing a Culture of Security Awareness at the Rochester Institute of Technology.](https://reader036.fdocuments.us/reader036/viewer/2022081514/56649da25503460f94a8ea34/html5/thumbnails/1.jpg)
1
Ben Woelk
RIT Information Security Office
Advancing Digital Self Defense
Establishing a Culture of Security Awareness
at the Rochester Institute of Technology
![Page 2: 1 Ben Woelk RIT Information Security Office Advancing Digital Self Defense Establishing a Culture of Security Awareness at the Rochester Institute of Technology.](https://reader036.fdocuments.us/reader036/viewer/2022081514/56649da25503460f94a8ea34/html5/thumbnails/2.jpg)
2
Copyright and Reuse
• The Digital Self Defense logo is the property of the Rochester Institute of Technology and is licensed under the Creative Commons Attribution-NonCommercial-NoDerivs License. To view a copy of this license, visit http://creativecommons.org/licenses/by-nc-nd/2.0/ or send a letter to Creative Commons, 559 Nathan Abbott Way, Stanford, California 94305, USA. To request permission for other purposes, contact [email protected].
• The course materials are the property of the Rochester Institute of Technology and are licensed under the Creative Commons Attribution-NonCommercial-ShareAlike License. To view a copy of this license, visit http://creativecommons.org/licenses/by-nc-sa/2.0/ or send a letter to Creative Commons, 559 Nathan Abbott Way, Stanford, California 94305, USA. To request permission for other purposes, contact [email protected].
![Page 3: 1 Ben Woelk RIT Information Security Office Advancing Digital Self Defense Establishing a Culture of Security Awareness at the Rochester Institute of Technology.](https://reader036.fdocuments.us/reader036/viewer/2022081514/56649da25503460f94a8ea34/html5/thumbnails/3.jpg)
3
ChallengesChallenges
Who is RIT?• At least 3 different audiences• Various degrees of internet
knowledge– Not everyone is technology
savvy• 2500 new students each year;
15,000 total• 3000 faculty and staff
![Page 4: 1 Ben Woelk RIT Information Security Office Advancing Digital Self Defense Establishing a Culture of Security Awareness at the Rochester Institute of Technology.](https://reader036.fdocuments.us/reader036/viewer/2022081514/56649da25503460f94a8ea34/html5/thumbnails/4.jpg)
4
Our ApproachOur Approach
GAIN• Target audiences
with different communications tools
• Orientation• Facebook• Events and contests
TRAIN• Digital Self Defense
workshops
MAINTAIN• Website and printed
materials– Awareness materials
• Advisories and alerts
![Page 5: 1 Ben Woelk RIT Information Security Office Advancing Digital Self Defense Establishing a Culture of Security Awareness at the Rochester Institute of Technology.](https://reader036.fdocuments.us/reader036/viewer/2022081514/56649da25503460f94a8ea34/html5/thumbnails/5.jpg)
5
OrientationOrientation
Freshmen Orientation• 90-minute time slot• Three sections
– Information Security– Copyright and Illegal File Sharing– Safe Social Networking
• Technical presenters partnered with Student Affairs
![Page 6: 1 Ben Woelk RIT Information Security Office Advancing Digital Self Defense Establishing a Culture of Security Awareness at the Rochester Institute of Technology.](https://reader036.fdocuments.us/reader036/viewer/2022081514/56649da25503460f94a8ea34/html5/thumbnails/6.jpg)
6
Facebook Presence
Information Security Facebook– 19,000+ RIT
Facebook accounts– Set up as Group,
not Profile– Current issues
• Safe social networking info
• Threats and vulnerabilities
![Page 7: 1 Ben Woelk RIT Information Security Office Advancing Digital Self Defense Establishing a Culture of Security Awareness at the Rochester Institute of Technology.](https://reader036.fdocuments.us/reader036/viewer/2022081514/56649da25503460f94a8ea34/html5/thumbnails/7.jpg)
7
Special EventsSpecial Events
• National Cyber Security Awareness Month Speakers– Technical and non-technical
• Poster Contest• DHS MS-ISAC National Webcast
Initiative
![Page 8: 1 Ben Woelk RIT Information Security Office Advancing Digital Self Defense Establishing a Culture of Security Awareness at the Rochester Institute of Technology.](https://reader036.fdocuments.us/reader036/viewer/2022081514/56649da25503460f94a8ea34/html5/thumbnails/8.jpg)
8
Awareness ContestAwareness Contest
Support desktop and password standards
• Email and poster marketing campaign
• Prizes• Awareness website• Quiz• Contest drawing
![Page 9: 1 Ben Woelk RIT Information Security Office Advancing Digital Self Defense Establishing a Culture of Security Awareness at the Rochester Institute of Technology.](https://reader036.fdocuments.us/reader036/viewer/2022081514/56649da25503460f94a8ea34/html5/thumbnails/9.jpg)
9
Digital Self DefenseDigital Self Defense
Three Workshops •DSD 101—Introduction•DSD 102—Desktop Security
Software•DSD 103—Information
Handling
![Page 10: 1 Ben Woelk RIT Information Security Office Advancing Digital Self Defense Establishing a Culture of Security Awareness at the Rochester Institute of Technology.](https://reader036.fdocuments.us/reader036/viewer/2022081514/56649da25503460f94a8ea34/html5/thumbnails/10.jpg)
10
Digital Self Defense 101
Introduction to Digital Self Defense
• General overview of how to practice safe computing and protect yourself and others
• Online threats• Balance technical solutions and
common sense
![Page 11: 1 Ben Woelk RIT Information Security Office Advancing Digital Self Defense Establishing a Culture of Security Awareness at the Rochester Institute of Technology.](https://reader036.fdocuments.us/reader036/viewer/2022081514/56649da25503460f94a8ea34/html5/thumbnails/11.jpg)
11
Digital Self Defense 102
Desktop Security Software• Detailed look at software tools
needed to meet the requirements of the Desktop Security Standard
• Software simulation allows users to experience installation and use of security software
![Page 12: 1 Ben Woelk RIT Information Security Office Advancing Digital Self Defense Establishing a Culture of Security Awareness at the Rochester Institute of Technology.](https://reader036.fdocuments.us/reader036/viewer/2022081514/56649da25503460f94a8ea34/html5/thumbnails/12.jpg)
12
Digital Self Defense 103
Information Handling• Protect important information
belonging to you or RIT• Impact of legislative mandates • Identify RIT Confidential
information • Information Lifecycle
– Creation, Transfer, Storage, Disposal
![Page 13: 1 Ben Woelk RIT Information Security Office Advancing Digital Self Defense Establishing a Culture of Security Awareness at the Rochester Institute of Technology.](https://reader036.fdocuments.us/reader036/viewer/2022081514/56649da25503460f94a8ea34/html5/thumbnails/13.jpg)
13
Information Security Website
• Alerts and Advisories• Standards • User Guides• Event
Announcements
![Page 14: 1 Ben Woelk RIT Information Security Office Advancing Digital Self Defense Establishing a Culture of Security Awareness at the Rochester Institute of Technology.](https://reader036.fdocuments.us/reader036/viewer/2022081514/56649da25503460f94a8ea34/html5/thumbnails/14.jpg)
14
Awareness Brochures
• Support RIT requirements• Discuss common issues and
concerns– Desktop Standard– Passwords– Wireless– Instant Messaging– Avoiding Identity Theft
![Page 15: 1 Ben Woelk RIT Information Security Office Advancing Digital Self Defense Establishing a Culture of Security Awareness at the Rochester Institute of Technology.](https://reader036.fdocuments.us/reader036/viewer/2022081514/56649da25503460f94a8ea34/html5/thumbnails/15.jpg)
15
Advisories and AlertsAdvisories and Alerts
• Email to students, staff, and Email to students, staff, and faculty when absolutely necessaryfaculty when absolutely necessary– Viruses and other malwareViruses and other malware– Spoofing, phishing and other online Spoofing, phishing and other online
scams scams – PatchingPatching
• Message CenterMessage Center
![Page 16: 1 Ben Woelk RIT Information Security Office Advancing Digital Self Defense Establishing a Culture of Security Awareness at the Rochester Institute of Technology.](https://reader036.fdocuments.us/reader036/viewer/2022081514/56649da25503460f94a8ea34/html5/thumbnails/16.jpg)
16
SummarySummary
• One size doesn’t fit all• Multi-year process (5+ years)• Balance frequency of
communications• Make information security fun• Prizes make great motivators