UNC CAUSE 2016

Malicious cyber actors have targeted colleges and universities with a myriad of cybercrime activities including spear phishing students and employees with university- or college-themed email; creating fake university or college websites; infecting campus computers with malicious software; and in some cases launching advanced persistent threats (APTs) to steal our data and intellectual property.



Despite heroic efforts of our system owners, security and IT professionals, it is only matter of time until another university or college finds out that they are the next victim of a cybercrime. Are you ready for this?



This session will be a live tabletop exercise based on real world scenarios. It will highlight the key areas of concern when responding to major cyber security incidents in a higher education environment including planning, first responder actions, forensics, notification, cyber insurance, communication planning, eradication and recovery, etc. Participants will engage with their colleagues and exchange information and ideas about how they handle key aspects of cyber security incidents at their institutions.



The ideal audience for this session is a combination of business and system owners, data stewards, communications personnel, IT and IT security professionals, internal auditors, and any other roles that may be involved in responding to cybersecurity incidents.