On Oct. 29, Ohio State welcomed Holly Drake into the newly created position of Chief Privacy Officer. Data privacy needs are increasingly far reaching, spanning the worlds of both regulation and data ethics. In this new role, Drake will have a dual reporting relationship to both Chief Information Security Officer in Enterprise Security Helen Patton and Gates Garrity-Rokous, Vice President and Chief Compliance Officer for the Office of University Compliance and Integrity.
Author: Helen Patton
General Data Protection Regulation (GDPR) is a new data protection privacy standard for individuals within the European Union (EU) that goes into effect on May 25. It also applies to the export of personal data to organizations outside the EU, including Ohio State.
To learn more about our approach to implementing GDPR, read Ohio State’s GDPR interim statement (osu.edu/privacy/gdpr.html).
Should you receive any external GDPR inquiries, please direct them to the IT Service Desk at 614-688-4357 (HELP) or via email at firstname.lastname@example.org.
It’s time for the OSU community to talk about what ransomware is, and how to protect against it. Ransomware is a type of malicious software designed to block access to a computer system until a sum of money is paid. Ohio State has seen some instances of ransomware – and the variants of ransomware are rapidly changing.
The Enterprise Security and the Wexner Medical Center Security teams are working together to offer a 90 minute discussion of Ransomware, for interested OSU faculty and staff.
Enterprise Security staff at Ohio State are seeing an increase in the volume of phishing emails offering users attachments, links or instructions for downloading their W-2 forms. These are fraudulent emails designed to steal your identity and Social Security number. See the full article for tips on how to spot a scam.
By popular demand, you can now keep your password twice as long! With a 180 day shelf-life, you will only be changing your password a few times year. The system changes commenced on Monday, August 25, 2014.
After setting your new password you will have 180 days before another change is required.
This week, a world-wide security issue was discovered called the “Heartbleed Bug.” The issue involves network software called OpenSSL, which is an open-source set of libraries for encrypting online services. The media coverage that has surrounded Heartbleed opens the door for phishing attempts, so you can expect to see more phishing emails – don’t fall for them! If you receive emails, asking you to click on a link and provide an ID and password, do not do it. Representatives from Ohio State will NEVER ask you for a password via email.