>
5) What metrics is the college using to measure if current cybersecurity initiatives are working?
Some colleges collect the fines and penalties to show how much it costs the school per student credit card and record during a data breach.
6) What are your cybersecurity tactics trying to accomplish?
Make sure you college’s current cybersecurity strategies have graduated from the 80s, where suggestions to change passwords were the primary means of keeping a network safe.
7) Should you college consider cybersecurity liability insurance?
Enrolling in cybersecurity liability insurance is a difficult process to get involved with, but it can be worthwhile. If your college buys this insurance, it has to define a risk baseline and has to know how to fix the network’s vulnerabilities.
8) Are your college’s audit processes, both state audits and third party, up to date?
Some colleges reported that their auditing processes and questions are still from the 80s and 90s, and that the terminology is outdated. Updated processes and questions will help IT staff go through an audit more effectively, and will increase understanding.
9) How much by-in with management does your college have?
If a college doesn’t have support from its administrators, things like cybersecurity can’t happen on campus. Sometimes, colleges have to go beyond technical groups to larger campus organizations, like the university senate or the CFO, to get support.
10) Is there a disconnection between governance, funding and policy? What policies is your college defining that will help protect the assets of the university?
If you enjoyed this article and want to receive more valuable industry content like this, click here to sign up for our digital newsletters!
Leave a Reply