Category: Cybersecurity

The CISO’s Perspective – Special Edition – Enterprise Systems Security

Every once in a while I like to point out one of the teams in the Office of Cybersecurity and present something newsworthy. Today I want to highlight the accomplishments of the Enterprise Systems Security domain led by Christine Peterson. Over the last year the Human Resources System underwent a major overhaul as this UW… Continue Reading The CISO’s Perspective – Special Edition – Enterprise Systems Security

The CISO’s Perspective: Now that we know what cybersecurity risk is…

“It’s not important because it’s policy, its policy because it’s important.” – Gary Declute After working on it for about a year, we are in the end stages of walking the Cybersecurity Risk Management Policy through the emerging IT Governance structure.  And, with great hope and anticipation, we should have it published in a few… Continue Reading The CISO’s Perspective: Now that we know what cybersecurity risk is…

UW takes steps to address offensive email

Since last Saturday, many members of the UW–Madison community have received a message with the subject on the “Problem of White Genocide.” While this and other unwanted email falls into the category of spam, many found it objectionable. UW–Madison’s Office of Cybersecurity and email teams have confirmed that this message went to a few thousand people with UW–Madison… Continue Reading UW takes steps to address offensive email

The CISO’s Perspective: Smart cybersecurity plans balance vision and agility

There’s an inherent dilemma in effectively managing cybersecurity: IT organizations must dedicate the time and focus required for long-term strategic planning while maintaining the agility to meet evolving threats and take advantage of emerging technologies. Add in the ongoing need to review and revise strategic plans to reflect those changing risk and technology landscapes, and… Continue Reading The CISO’s Perspective: Smart cybersecurity plans balance vision and agility

The CISO’s Perspective – Beyond security and privacy: the ethical use of data

This is a re-run of an article I wrote for Security Current which was based on a presentation I delivered at the IQPC Cybersecurity in Higher Education Conference in March of this year. As the flagship campus in the UW System and a major research institution in a state with open record statutes that respect… Continue Reading The CISO’s Perspective – Beyond security and privacy: the ethical use of data

Was your account compromised?

The Office of Cybersecurity has recently received a confirmed report of compromised credentials associated with several social media and professional networking sites where an email address was used as the Login ID. This compromise resulted in the publication of password information for these accounts. These account dumps, from Myspace; Tumblr; and LinkedIn, include email addresses… Continue Reading Was your account compromised?