The Research & Education Networks Information Sharing & Analysis Center (REN-ISAC) and TIAA have teamed up to promote and enhance higher education and research cybersecurity efforts in the United States. “TIAA has a robust, mature cybersecurity program,” said Julie Moog, TIAA managing director of the Office of Cybersecurity. “Often concerns we hear most from our… Read more »
REN-ISAC
Webinar: Higher Ed’s Trusted Threat Intelligence Security Event System (SES)
Through the Security Event System (SES), REN-ISAC members gain access to a repository of shared threat intelligence. We aggregate, correlate, and analyze data from member institutions, trusted partners, and open-source providers to ensure that all our members receive timely information to strengthen their operational protection and response. What data does SES offer? Every day, SES… Read more »
Are Cloud Services More Secure?
By Shane Albright, REN-ISAC Principal Security Engineer On May 18th, the U.S. Senate Committee on Health, Education, Labor and Pensions held a hearing on Cybersecurity in the Health and Education Sectors, which featured invited testimony from subject matter experts from the relevant sectors. During a Q&A session with the invited experts, Senator Bill Cassidy, M.D…. Read more »
REN-ISAC and Fortinet sign partnership agreement
The Research & Education Networks Information Sharing & Analysis Center (REN-ISAC) and Fortinet have entered a partnership focused on threat information sharing to promote and enhance higher education and research cybersecurity efforts in the United States. This partnership, with support from Carahsoft Technology Corporation, was established under a memorandum of understanding (MOU) that will focus… Read more »
For Higher Ed, By Higher Ed: REN-ISAC Cybersecurity Peer Assessments
What is a REN-ISAC peer assessment? What makes it different from other types of assessments? The REN-ISAC peer assessment process starts with expert assessors who have real-world experience working in higher education information security. Through their objective evaluation and actionable recommendations, you and your institution can strengthen internal safeguards and mitigate possible risk. “When the… Read more »
Gain world-class security training with SANS & REN-ISAC
The partnership between SANS and the Research and Education Networking Information Sharing and Analysis Center (REN-ISAC) draws on the shared mission to ensure that InfoSec practitioners in critical organizations have the skills to protect national security and enhance cybersecurity readiness and response. This program offers security awareness and online technical training courses to qualifying educational… Read more »
REN-ISAC Publishes Guidance for Inclusive Professional Language
The language used by a professional community has a great impact on its participation and perception. Unfortunately, some of the technical jargon and professional shorthand used in Information Technology—such as “master/slave,” “whitelist/blacklist,” “rule of thumb”—carries with it a problematic cultural history of subjugation and inequality. To combat this, the Research and Education Networks Information Sharing… Read more »
Mind Your MANRS: Introduction to Mutually Agreed Norms for Routing Security
On March 28, 2022, RTCOMM, a leading Russian internet service provider, began blocking their users from Twitter. Due to a (mis)configuration, RTCOMM’s networks also attempted to isolate Twitter from the entire global Internet network. Fortunately, Twitter was successful in stopping the hijack. This is just one of many examples of how the cracks in the… Read more »
REN Member Spotlight: Getting the Most Out of Your Cyber Liability Insurance with Mike Gioia
For over the past decade, higher education institutions have been relying on cyber liability insurance (CLI) to act as a safety net to cover costs of a major incident; however, with the prevalence and ever-rising costs of ransomware incidents, cyber liability insurance is not the saving grace it used to be. So what can higher… Read more »
Breaking a Botnet: Microsoft, Health-ISAC Talk Taking on ZLoader
In mid-April 2022, Microsoft, Health-ISAC (H-ISAC), and Financial Services-ISAC (FS-ISAC) disrupted a malicious Zloader botnet variant. Tomorrow, REN-ISAC will host a webinar featuring Rich Boscovich (Assistant General Counsel-Digital Crime Unit/Malware Analysis & Disruption Team, Microsoft) and Errol Weiss (Chief Security Officer, H-ISAC) to discuss ZLoader, Microsoft’s disruption techniques, and what you can do to participate… Read more »