Cybersecurity in higher education requires a cultural change. It’s important to get everyone to understand that there needs to be changes in the way that we do business, so it really starts at the top by educating leadership and then building a strategy to communicate it out to all the stakeholders.Allen Baxter, Information Security Officer, The University of Southern Mississippi
Podcast | Risk and cybersecurity
Higher Ed Advisor: designing an effective cybersecurity strategy to safeguard institutional data and research
Welcome to Higher Ed Advisor, the Baker Tilly podcast series where we speak with higher education industry leaders about practical and proactive guidance to help colleges and universities protect and enhance their value.
Cybercrime continues to elevate information technology (IT) risks across higher education and the research institution community is a prime target for increasingly more advanced and dangerous attacks. In this podcast, the University of Southern Mississippi’s (USM) Information Security Officer, Allen Baxter, and Baker Tilly’s Higher Education Cybersecurity Leader, Mike Cullen, navigate the critical role cybersecurity plays to protect institutional data and research.
Listen as we zone in on why research institution leaders should raise their awareness, education, collaboration, communication and plans to effectively and strategically manage and mitigate cybersecurity risks, in addition to complying with federal research requirements. We define the most common regulations (NIST 800-171, CMMC, NSPM-33 and GLBA) and further examine:
- Why and how research institutions are increasingly vulnerable to cyberattacks and threats
- Importance of understanding data to apply the controls and safeguards needed to secure research
- Key implications of not protecting data from a regulatory and threat perspective
- Questions that help identify, assess and manage cyber risks
- Strategies to comply with federal regulations that can impact funding
- How proper cybersecurity measures align with an institution’s mission
Cybersecurity is a journey. Allen and Mike reveal leading cybersecurity practices that decision-makers should consider as part of their long-term strategy to protect and enhance their campus’ data, resources and reputation.
The culture of higher education is both a challenge and an asset. The challenge is dealing with a lot of threats, regulations and different activities happening. The asset is that institutions can address all these things in smaller chunks or enclaves to meet the necessary regulations or requirements yet not be overly burdensome at the same time.Mike Cullen, Principal and Higher Education Cybersecurity Leader, Baker Tilly
Higher Ed Advisor hosts
David Capitano
As the firm’s higher education practice leader, Dave Capitano provides oversight to more than 200 team members serving over 400 colleges, universities, research institutions and higher education systems across the United States.
Mike Cullen
Mike is a principal and the higher education cybersecurity and IT risk leader with the firm. He helps clients tackle cybersecurity, data and information technology risks. He works with clients in multiple industries with a dedicated focus and extensive experience with higher education, research institutions, not-for-profit organizations and government contractors.
Meet this episode’s guest speaker
- Allen Baxter, Information Security Officer, The University of Southern Mississippi
Additional cybersecurity insights
Combating the rising costs of cyber insurance: how we got here, and what organizations can do
As the cost of cyber insurance trends upward, often with less coverage, organizations across all industries must improve their cyber controls to minimize premium costs and their risk of a cyber attack.
Cybersecurity Maturity Model Certification (CMMC) Q&A
Cybersecurity Maturity Model Certification (CMMC) compliance is an evolving topic. Find answers to common questions on CMMC readiness, levels and timelines.
Research security: what auditors must know in 2022
Gain insight into the latest research security developments and requirements and how they impact higher education.
How NIST 800-171 Revision 3 may impact CMMC
Learn about the impact of NIST 800-171 Revision 3 on Cybersecurity Maturity Model Certification (CMMC) 2.0 and the steps contractors can take to prepare for the effects.
Additional resources
Interested in more cybersecurity guidance to protect your data and research? Find out how Baker Tilly’s higher education specialists can help your institution navigate cybersecurity solutions. Contact our team now.
