Tag: Enterprise Security

Because stolen, compromised or damaged information can lead to unwanted and unnecessary consequences for both staff members and the university, Ohio State is increasingly expanding the use of multifactor authentication. eTimesheet and eLeave will be the latest systems to adopt BuckeyePass protection on Sept. 30.

Having more than one step for logging in to your accounts significantly increases the level of protection that prevents unauthorized individuals from accessing your information.

You’ve probably seen many news stories about Facebook and how it handles your personal data. Many of us rely on the online service to keep in touch with family, plan a vacation, chat daily with friends. We rarely think about the digital footprints we leave, or who would ever want to follow our tracks.

Sure, we knew that being fed advertising was part of the deal to use the platform for free. But how many of us actually read the privacy statement when we started using the service? And how many of us noticed the changes they’ve made over time?

Interest in watching Team USA is high. As advertisers vie for your eyeballs with the American flag and the world-famous Olympic rings, it is easy to trust the message. However, just as you should be vigilant about counterfeit merchandise and ticket scams, you should also be aware of your email inbox.

Receive an email about an online lottery promotion where you can win tickets to PyeongChang? All you need to do to win is provide EVERY personal detail about you. What could go wrong, right?

CISO Helen Patton was featured this fall as part of a “Women in Risk” panel at The Risk Institute’s 4th Annual Conference hosted at The Ohio State University Fisher College of Business.

Information technology and cybersecurity fields are constantly evolving, making it crucial for professionals to keep up with the most current information, education and trends. Enterprise Security at The Ohio State University is making sure IT professionals within the university and the Wexner Medical Center are at the forefront of these ever-changing fields.

Enter Cybersecurity Days.

In addition to securing systems, information security professionals must respond to security incidents resulting from a loss or breach of information caused by unsafe habits of workplace staff.

As you know, on Friday there was a worldwide ransomware attack. Though that attack is currently partially halted, there are additional versions currently released that are live and active. Technical staff should be aware that this family of ransomware works by exploiting the Server Message Block vulnerability. Microsoft released patches on March 14 to address this.

Universities have a responsibility to numerous agencies of oversight; federal standards for universities may come from commerce or health agencies and from research, education and industry groups. Chief Information Security Officers (CISO) have the unenviable role of meeting all these requirements, while simultaneously keeping systems and information safe.