It’s a little gauche to plug one’s own work, but I’ll do it here anyway. J I wrote a book on this topic in 2014, a cybersecurity guide for the non-technical user called “10 Don’ts on Your Digital Devices” (https://www.amazon.com/Donts-Your-Digital-Devices-Non-Techies/dp/1484203682/ ).
My CTO agreed that we could purchase a copy for every faculty and staff member in early 2015, and it has made a huge difference. Our phishing successes are way down from where they used to be. I think in general people are getting smarter (more paranoid?) about these tricks, so I won’t give all credit to the book. But I do think it made a difference.
It isn’t specifically aimed at higher ed; however, since both myself and my co-author are in academia, there are several examples relevant to the industry.
Eric J. Rzeszut, CISSP
Help Desk Manager
McIntire School of Commerce
University of Virginia
From: The EDUCAUSE IT Support Services Constituent Group Listserv [mailto:[log in to unmask]]
On Behalf Of Anita McCarthy
Sent: Monday, November 21, 2016 10:18 AM
To: [log in to unmask]
Subject: [ITSUPPORTSERVICES] Cyber Security Awareness for Staff & Students
Wondering if anyone has any successful best practices, techniques, or tools that have worked for your school to combat the increase in phishing attacks aimed at higher ed (phishing etc.)
In addressing this issue our plan is to educate our students and staff and raise awareness on the topic of Phishing through blog posts, posters and training. I have looked into simulation systems but they are extremely expensive.
Anita McCarthy, M.S.
Training Coordinator, ITS
Riverdale, NY 10471
-Have a question? Check our Knowledge Base
Check on your tickets here.
********** Participation and subscription information for this EDUCAUSE Constituent Group discussion list can be found at http://www.educause.edu/groups/.