Open University Campuses Do Not Have to Be a Security Nightmare

Open University Campuses Do Not Have to Be a Security Nightmare

  • By Ginger Hill
  • Jun 11, 2014

Open University Campuses Do Not Have to Be a Security NightmareAddressing the seemingly oxymoron that university campuses are meant to be open and not feel guarded so that students can build their own culture as they grow educationally while being safe and secure, a recent panel discussion at the SANS Security Leadership Summit in Boston, “Lessons Learned from Higher Education,” was conducted and panelists actually agreed that this is possible.

Panelists included:

  • Larry Wilson, CISO, UMass, moderator;
  • David Escalante, director of computer policy and security, Boston College; and
  • David Sherry, CISO, Brown University.

Panelists recognized that it is impossible to assume that everything on a university campus will be completely protected, but that shouldn’t stop universities from using security technologies to help ensure safety, especially security tools that are automated. The goal is not to be looked at as dictators over employees or students.

Challenge #1: A university campus is like a small city with:

  • Housing – residence halls;
  • Entertainment – sporting events; drama productions; socials; etc.
  • Food – dining hall and restaurants;
  • Healthcare – on-campus clinics;
  • Money – student loans; and
  • Diverse population – faculty, staff, students, donors, boosters, athletic support groups, applicants, parents, alumni, etc.

To protect these many elements on a university campus, priorities must be established and focus directed at a limited number of vulnerabilities.

Tips from the Panelists

  1. Firewall off the data center from the campus network to help prevent hackers from accessing personal data.
  2. Enable students by giving them what they need, but convince them to do it securely.
  3. Personalize all security messages. If something bad happened to another student because he didn’t lock the door to his dorm room, for example, use this to educate other dorm residents.

Challenge #2: Cutting through vendor fog pitches.

Wilson’s strategy is to be very picky and opt for security technologies that work specifically in academic settings.

Wilson uses “ISO for process and management and SANS for technology” at UMass to focus on protecting assets more than addressing individual threats.

What are some other tips to keep the concept of an open campus while providing adequate security measures?

About the Author

Ginger Hill is Group Social Media Manager.

Featured

  • Survey: CISOs Increasing Budgets for Crisis Simulations in 2025

    Today, Cyber Performance Center, Hack The Box, released new data showcasing the perspectives of Chief Information Security Officers (CISOs) towards cyber preparedness in 2025. In the aftermath of 2024’s high-profile cybersecurity incidents, including NHS, CrowdStrike, TfL, 23andMe, and Cencora, CISOs are reassessing their organization’s readiness to manage a potential “chaos” of a full-scale cyber crisis. Read Now

  • Human Risk Management: A Silver Bullet for Effective Security Awareness Training

    You would think in a world where cybersecurity breaches are frequently in the news, that it wouldn’t require much to convince CEOs and C-suite leaders of the value and importance of security awareness training (SAT). Unfortunately, that’s not always the case. Read Now

  • Windsor Port Authority Strengthens U.S.-Canada Border Waterway Safety, Security

    Windsor Port Authority, one of just 17 national ports created by the 1999 Canada Marine Act, has enhanced waterway safety and security across its jurisdiction on the U.S.-Canada border with state-of-the-art cameras from Axis Communications. These cameras, combined with radar solutions from Accipiter Radar Technologies Inc., provide the port with the visibility needed to prevent collisions, better detect illegal activity, and save lives along the river. Read Now

  • Survey: 84 Percent of Healthcare Organizations Spotted Cyberattack in Last 12 Months

    Netwrix, a vendor specializing in cybersecurity solutions focused on data and identity threats, surveyed 1,309 IT and security professionals globally and recently released findings for the healthcare sector based on the data collected. It reveals that 84% of organizations in the healthcare sector spotted a cyberattack on their infrastructure within the last 12 months. Phishing was the most common type of incident experienced on premises, similar to other industries. Read Now

Most   Popular

Featured Cybersecurity

Webinars

New Products

  • Compact IP Video Intercom

    Viking’s X-205 Series of intercoms provide HD IP video and two-way voice communication - all wrapped up in an attractive compact chassis. 3

  • FEP GameChanger

    FEP GameChanger

    Paige Datacom Solutions Introduces Important and Innovative Cabling Products GameChanger Cable, a proven and patented solution that significantly exceeds the reach of traditional category cable will now have a FEP/FEP construction. 3

  • Automatic Systems V07

    Automatic Systems V07

    Automatic Systems, an industry-leading manufacturer of pedestrian and vehicle secure entrance control access systems, is pleased to announce the release of its groundbreaking V07 software. The V07 software update is designed specifically to address cybersecurity concerns and will ensure the integrity and confidentiality of Automatic Systems applications. With the new V07 software, updates will be delivered by means of an encrypted file. 3