Research & Education Networks Information Sharing & Analysis Center – Page 4 – Cybersecurity Higher Education News for Alliance Members and the Public

Strengthening Higher Education Cybersecurity — Insights You Should Know

Posted on April 9, 2024 by Jennifer Pacenza

REN-ISAC Q&A with Julie Moog, Managing Director for TIAA’s Cybersecurity and Fraud Management Organization

Note: Thank you to TIAA, one of REN-ISAC’s amazing partners, for helping to bring the highest level of cybersecurity awareness and information to our members and the public.

Julie Moog is the Managing Director and Executive Information Security Manager for TIAA’s Global Cybersecurity and Fraud Management organization. In this question-and-answer article, she shares new insights on how you can strengthen cybersecurity in your higher education institution. She addresses a range of timely topics and best practices focused on phishing, ransomware, generative artificial intelligence, and the skills shortage.

TIAA collaborates with REN-ISAC in sharing cybersecurity thought leadership and best practices with higher education institutions while enhancing the growing movement towards cybersecurity becoming a more expansive community sport.

Q. What are the biggest obstacles to detecting and preventing the biggest cyberattacks such as phishing and ransomware?

(more…)

What’s happening at RIMM 2024?

Posted on April 3, 2024 by Jennifer Pacenza

Are you looking forward to RIMM 2024? We are! The planning committee has finalized a rich lineup of presentations, panels, and activities at the 2024 REN-ISAC Member Meeting.

RIMM 2024 Agenda

7:00 to 7:55 Check-in / Breakfast Buffet

8:00 to 8:10 Welcome

8:10 to 9:00 REN-ISAC Updates

9:00 to 9:45 Presentation: “Attack Surface Management”

The presentation will cover attack surface management, specifically how you can get started using data and tools that you already have (Zeek, firewall, and NetFlow logs) to identify services running on their network. I will provide examples from the National Center for Supercomputing Applications where we use Zeek, Splunk, and a custom scanner available on GitHub.

9:50 to 10:10 Morning Break

10:10 to 10:55 Presentation: “The Increasing Complexity of the Cybersecurity Regulatory Environment in Federal Research”

With the National Security Presidential Memorandum 33 (NSPM-33) and Cybersecurity Maturity Model Certification (CMMC) requirements upon us in the federally funded research space, it is critical that we have a firm grasp of what they are, what they mean, and the level of effort to become compliant. The presentation will introduce the NSPM-33 and the CMMC, discuss their current status, and share how Georgia Tech Research Institute is preparing to meet the challenge of becoming compliant.

11:00 to 11:45 Presentation: “Security as a Service: A Consolidated Approach for Cybersecurity”

In this interactive, engaging session we will describe how we are delivering comprehensive cybersecurity for 4 Universities of Wisconsin institutions. We will dive into each of the services: cyber defense, risk & compliance and awareness. We will also cover how we provide integrated strategic security support (BCISO) to our campus partners. We will illustrate how the central IT team is providing complimentary IT as a Service services.

11:45 to 12:45 Lunch

12:45 to 1:30 Open Spaces Facilitated Discussions

1:35 to 2:20 Presentation: “Data Source Priority and Threat Hunting; Unveiling Best Practices and Lessons Learned”

This session focuses on how OmniSOC has matured over the last 5 years-going from IDS analysts to empirical based threat hunting utilizing endpoint logs and threat intelligence. Attendees will be introduced to concepts such as top techniques, chokepoints as well as how OmniSOC has utilized the MITRE ATT&CK framework to guide prioritization efforts.

2:20 to 2:40 Afternoon Break

2:40 to 3:25 Presentation: “Vulnerability Management: The Art of Effective Nagging”

Beginning in September 2022, the University of Waterloo launched a new Vulnerability Management Initiative. This process uses information from the Qualys IT Security platform and other sources, along with a defined escalation procedure, to ensure the remediation of IT security vulnerabilities across the institution. This initiative has also proved an exercise in balancing friction with campus IT groups while standardizing security best practices. This talk will discuss the philosophy and history behind the Vulnerability Management program at the University of Waterloo, technical details of the vulnerability reporting process, as well as its successes, failures, tribulations, and future.

3:30 to 4:25 Panel: “Best Practices for Obtaining Executive and Board-Level Commitment to Information Security”

Cybersecurity represents a critical risk to universities as data breaches, fraud-scams, and identity theft are on the rise; however, many organizations struggle to justify, much less obtain, information security investments until a major incident occurs. This panel will discuss changes at New Mexico State University and Washington University in St. Louis to successfully invest in maturing their information security programs. Attendees will be able to

- - - Formulate, update, and communicate short- and long-term organizational cybersecurity strategies and policies to the board.
    - Gain practical tips on how to establish a comprehensive risk-based cybersecurity information security program to brief the board.
    - Prioritize early success to build board and executive confidence in the IT organization’s ability to deliver.

4:30 Closing Remarks

Register for RIMM 2024 before April 30! This year’s REN-ISAC Member Meeting (RIMM) will be held from 7:00am – 4:30pm on Tuesday, April 30 at the Hyatt Regency in Minneapolis, MN. Please note that RIMM registration is independent of CPPC registration this year; CPPC registration does not constitute as being registered for RIMM. For more information, visit the REN-ISAC RIMM page.

We would like to thank our sponsors Artic Wolf, Domain Tools, SANS, and Shadowserver for helping support RIMM 2024.

We look forward to seeing you all at RIMM 2024!

Join us for REN-ISAC Member Meeting 2024

Posted on February 28, 2024 by Jennifer Pacenza

Register now for RIMM 2024! This year’s REN-ISAC Member Meeting (RIMM) will be held from 7:00am – 4:30pm on Tuesday, April 30 at the Hyatt Regency Minneapolis. Your $275 registration fee will give you access to

REN-ISAC Updates
Presentations and panels featuring REN-ISAC members
Break out discussion groups on member-chosen topics
Networking opportunities
Breakfast, lunch, and snacks

Registration will be open through April 30. Please note that RIMM registration is independent of CPPC registration this year; CPPC registration does not constitute as being registered for RIMM.

We would like to thank our sponsors Artic Wolf, Domain Tools, and SANS for helping support RIMM 2024.

For more information on the conference, please visit the REN-ISAC RIMM page. We look forward to seeing you all at RIMM 2024!

Your 2024 Steering Committee Representatives

Posted on January 5, 2024 by Jennifer Pacenza

We are pleased to announce the members on your 2024 Steering Committee as elected by you, our members. After tallying the votes, we have two new committee members joining our cadre of REN-ISAC Steering Committee leaders.

Frank Barton, Husson University
Tim Goth, Indiana University
Jesse Moore, University of Washington (newly elected)
Joel Rosenblatt, Columbia University (re-elected)
John Virden, Miami University
Ian Washburn, University of Notre Dame (newly elected)

We wish to thank all the candidates who ran. It is the spirit of volunteerism that helps make REN-ISAC such a powerful organization. We would also like to give a huge thank you to our departing Steering Committee members: Jodi Ito (University of Hawaii) and Russell Fulton (University of Aukland). They have served REN-ISAC with distinction during their tenure.

Thank you, as well, to all who voted in this year’s elections.

REN-ISAC Listening Tour Begins in Bangor, ME

Posted on December 18, 2023 by Jennifer Pacenza

Our community is the cornerstone of the REN-ISAC. To better serve the needs of higher education, REN-ISAC’s Anthony Newman (Executive Director) is visiting member institutions for a listening tour to hear direct feedback from our community.

On Friday, December 15, Newman met with representatives of the University of Maine, Husson University, and CISA in Bangor, ME, to discuss REN-ISAC’s products, services, and strategic goals. University representatives also shared the goals of their individual organizations encouraging sector-wide collaboration.

The group discussed a variety of topics including the benefit of increased tactical collaboration in combating the current challenges facing higher ed info security. The group also brainstormed avenues for greater visibility, opportunities for research collaboration, and improvements in emergency communications protocols. Both CISA and REN-ISAC provided information on their services and how they can improve sector-wide security.

“Husson University would like to thank Anthony for choosing Bangor and Husson University specifically as the first stop of his road tour. We look forward to our continued membership in the REN-ISAC and increasing collaboration with CISA, REN-ISAC, and the over 700 other members of REN-ISAC around the world,” said Frank Barton, IT Systems & InfoSec Administrator for Husson University.

Thank you, Husson, for this amazing opportunity. Would you like to host a listening tour event in the new year? Email us.

Taming the Technology Thunderbolt: How Higher Ed Can Avoid Gen AI Cyberattacks

Posted on December 14, 2023 by Jennifer Pacenza

By Julie Moog, Managing Director for TIAA’s Cybersecurity and Fraud Management Organization

Note: Thank you to TIAA, one of REN-ISAC’s amazing partners, for helping to bring the highest level of cybersecurity awareness and information to our members and the public.

Our world changed in 2023 because a thunderbolt technology came into our lives like no other we’ve ever seen. You know which one, ChatGPT, a type of generative artificial intelligence (AI) that you can ask to write a 5,000-word article on any topic and it will send it to you within seconds. Or a college term paper, or blog, or executive summary, or software code.

Wow.

Stunningly powerful, without question. It’s fundamentally going to change how professors teach and students learn in profound ways not as yet fully understood. It’s ratcheting up the potential for a larger number of more harmful and difficult to detect cyberattacks, on a much broader scale with more sophistication, against everyone involved in higher education from administrators to professors to students and employees. For many years to come.

Nothing has come along in quite some time, if ever, that has the potential to upend the very foundations of teaching and learning and how colleges and universities protect themselves from cyberattacks.

What You Will learn

In this article we’re going to share a brief explanation of what generative AI is, why it’s so powerful, and the latest statistics illuminating its rapid adoption. From there we’ll get into prevalent generative AI cyberattacks and threats and how you can detect and avoid them.

We’ll then sharpen our focus on higher education with updates on the latest programs focused on use of this technology. We’ll also address trends in student use, several of which are concerning, with associated insights, data, and actions to consider. We’ll wrap up with important actions you may want to consider to help avoid these new types of cyberattacks.

(more…)

NIST Recognizes REN-ISAC’s Role in Sector Collaboration

Posted on September 1, 2023 by Jennifer Pacenza

In “Cybersecurity for Research: Findings and Possible Paths Forward,” the National Institute of Standards and Technology (NIST) published the results of a study to uncover the cybersecurity challenges and risks, current methods and resources, and recommendations for future work found in higher education cybersecurity. According to the survey results, collaborative engagements, like those available through the REN-ISAC, provide resources and opportunities for addressing common cybersecurity challenges and risks.

NIST identified the major challenges facing our profession. First, there is a lack of cybersecurity awareness among researchers and institutional administrators. This leads to another major challenge, a culture clash between cybersecurity staff and researchers, administrators, and other university professionals. In addition, research institutions are facing IT security workforce and budget challenges. There are not enough skilled professionals in the field and turnover is high. Limited budgets have institutions struggling to maintain staffing and services, as well as keep up with the rapid pace of innovation.

In the face of these challenges, collaboration is key! The REN-ISAC is named among the top groups helping to bolster awareness, engagement, and collaboration across higher education research and cybersecurity communities. Our professional communities provide opportunities for information sharing, innovation, and efficient problem solving. The REN-ISAC also provides information and collaboration with Federal Government entities through our involvement with CISA, the FBI, and the National Council of ISACs (NCI). Those partnerships not only enable us to pass on national level security threat information to our members but also to advocate for our professional sector at the federal level through events like the NCI Day on the Hill (coming in October).

To learn more about what REN-ISAC does for higher ed cybersecurity, please visit our website.

REN-ISAC: The Untold Story

Posted on August 29, 2023 by Jennifer Pacenza

Learn the untold story of the REN-ISAC from former Indiana University President and REN-ISAC founder Michael McRobbie on Thursday, September 7. McRobbie will mark the 20^th anniversary of the REN-ISAC with a presentation on “The REN-ISAC: The Untold Story” cohosted by the Center for Applied Cybersecurity Research (CACR) and Luddy School of Informatics, Computing, and Engineering.

While the REN-ISAC was officially founded on February 21, 2003, the creation of the ISAC for the research and education sector started years prior. In 1997, IU was impacted by its first true modern cybersecurity incident. This event inspired McRobbie and other security and technology leaders to invest heavily in key initiatives leading to the establishment of the REN-ISAC, a complex story that has largely gone untold until now.

For the past 20 years, the REN-ISAC has served as the official cybersecurity and threat intelligence sharing community for higher education. It grew from less than 20 US institutions in its founding year to now over 750 institutions across the globe. In addition to providing for members, the REN-ISAC supports the higher education community at large by acting as the Computer Security Incident Response Team (CSIRT) for the sector.

We hope you will join us live or online for what is sure to be an interesting historical overview of the founding of the REN-ISAC. Visit our website for more history of the REN-ISAC.

Anthony M. Newman appointed as the Executive Director for the REN ISAC

Posted on August 9, 2023 by ctconron

After a national search that included engagement of the REN-ISAC Steering Committee and staff, Anthony M. Newman, MBA, CISSP has been appointed as the Executive Director for the Research & Education Networks Information Sharing & Analysis Center (REN ISAC) starting August 21.

Anthony brings with him than 20 years of experience in higher education, government, and consulting. His most recent role was the Chief Information Security Officer at Purdue University. With his knowledge and expertise, we are confident that he will greatly enhance the value we provide to our members in the research and education community.

“I feel incredibly honored to step into the role of Executive Director at REN ISAC,” Anthony expressed. “Together we will work diligently to strengthen cybersecurity within the research and education community creating a resilient environment.”

Throughout his career, Anthony has consistently demonstrated abilities in strategic thinking by successfully driving forward initiatives, leading high-performing teams, effectively managing risks, and yielding organizational improvements. We have no doubt that his commitment and excellence will contribute to REN-ISAC’s mission to strengthen cybersecurity within the research and education community.

“As we continue to prioritize cybersecurity and innovation, Anthony’s extensive expertise in strategic planning and organizational leadership makes us confident that he will successfully continue advancing the REN-ISAC. We are excited to have him actively engaged in the community in this role,” noted Rob Lowden, Vice President for IT and Chief Information Officer at Indiana University, host organization for the REN-ISAC.

Member Spotlight: Empathy is the Key to InfoSec with Frank Barton

Posted on March 7, 2023 by Jennifer Pacenza

If you are a REN-ISAC member, then you probably know Frank Barton. Ever since joining in 2019, Frank has been an active member who asks smart questions during webinars, offers friendly responses to email threads, volunteers for project groups like the Technical Advisory Group (TAG), and was recently voted onto the Steering Committee. But that is just who Frank is. Whether he is volunteering for his kids’ BSA Scout Pack and Troop or working with faculty as the IT Systems and InfoSec Administrator for Husson University, Frank is an almost inexhaustible well of good will and positive energy.

So it was no surprise that when I asked Frank “what is most important for today’s infosec professional,” he answered, “Empathy.”

“One of my pet peeves,” says Frank, “is that when people talk about infosec, they see it as a technological goal,” but it is more than that. It is a community collaboration goal. “Our job is to have the empathy to help people help themselves.”

(more…)