4. Spotlight: Australia Nation University Breach
Details
Accessed in late 2018, announced June 4
Involves โsignificant amountsโ of personal staff, student and visitor data extending
back 19 years, ~200,000 affected
may include โnames, addresses, dates of birth, phone numbers, personal email addresses and emergency contact
details, tax file numbers, payroll information, bank account details and passport details. Student academic records were
also accessed.โ
As a case study
Tracking ~60 stories, national (AU) and international
4
9. One Team, One Fight โ Our Shared Fate
The โOldโ Security Model
End state โ โwe are secureโ
โข Security is ITโs job
โข Lock it down
โข Plugging the holes
โข A solution in search of a problem
โข Security versus convenience
โข โIf only we had moreโฆโ Money,
Time, People
โข See no evil, hear no evil, speak no
evil
The โNewโ Security Model
End state โ โManaged riskโ
โข Security is everyoneโs responsibility
โข Enable the mission and values of
the university
โข Empower individuals and units
โข Resources allocated based on risk
โข Assume you are breached โ find
intruders and kick them out!
18. Canadian Shared Security Operations Centre (CanSSOC) is:
โข A shared proof of concept project
โข Based in part on a model initiated in the US higher education system
โข Being pursued in partnership with six Canadian universities:
โข The University of British Columbia,
โข University of Alberta,
โข McMaster University,
โข McGill University,
โข Ryerson University,
โข University of Toronto.
โข In Partnership with the National Research & Education Network
โข CANARIE โ federal
โข Cybera - Alberta
โข ORION - Ontario
โข RISQ โ Quebec
โข BCNET โ British Columbia
19. โTogether we see moreโ
Global profile
Attracting talent
Economies of scale
Higher Ed focus
We can do aย quick intro on each of us.ย ย What our role is and where we are from
I will include that I have been at three schools, used to report to the Chief Librarian
CUCCIO โ CIO Advisory Group
CanSSOC โ Steering groupโฆ
85% of known compromised accounts are students, visitors, alumni, etc.
8% of devices on network have critical vulnerabilities
When to make it mandatory?
Consider curated topics
Interactive โ but no quiz to pass!
Phishing awareness
First, it works - most breaches involve stolen credentials
We do not detect well
What we have โ research, IP, personal information, financial information
May be redundant โ but maybe go deeper into nation states โ name some of them
Talk about importance of travelling safe and how we need more security for certain places.
Maybe ask them how many have travelled to China, Iran, Russia โ if so, did they take any precautions
Introduce the notion of insiders โ maybe some data on how many incidents are based on insidersโฆ. Get into the issue of our students.
Review use of image
A chance to talk about collective action
Bring in the JSP, ONCHK, REN SIEMs
Reemphasize point made early the it is a team sportโฆ.joining together will make us stronger, able to do more.
Talka bout the interest from CSE and CSIS (ISED)