Joe Potchanat, Director of the EDUCAUSE Cybersecurity Program, talks on the new opportunities for improvement and awareness when it comes to cybersecurity and shares best practices for higher ed IT leaders to stay on the defensive.
- User Education is Key: Joseph underscores the significance of user education in higher education institutions. He highlights that cybersecurity risks, particularly ransomware, often originate at the end-user level. This includes students, faculty, staff, and contractors. It’s essential for everyone in the institution to have a good understanding of the risks they face and actively contribute to cybersecurity solutions.
- Data Minimization Matters: Joseph advises institutions to practice data minimization. By only collecting and retaining necessary data, they can reduce their exposure to potential breaches. He explains that even anonymized data can be pieced together to identify individuals, so minimizing data collection is a proactive step in safeguarding information.
- Privacy and Cybersecurity Go Hand in Hand: While cybersecurity focuses on the “how” of protection, privacy concerns address the “why.” Joseph highlights the growing importance of privacy in the field of cybersecurity. Balancing the need for security with individuals’ privacy rights is critical, and organizations should consider the implications of collecting and using personal data.