You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 90 Next »

Last reviewed: August 2015

October is National Cyber Security Awareness Month! Some quick links to get you started...

  1. Read this blog post so you don't have to start your plans from scratch! Let's Get Ready for NCSAM 2015.
  2. View related resources including the NCSAM Sample Kit, Cybersecurity Awareness Resource Library, Security Awareness Quick Start Guide, and Security Awareness Detailed Instruction Manual.
  3. Find a guest speaker using our Speakers Bureau.
  4. Get involved in the Stop.Think.Connect. awareness campaign.
  5. Download free materials at StaySafeOnline.org.

Wait! Are you a NCSAM Champion Yet?

Become a Champion of National Cyber Security Awareness Month. It's free and easy to sign up!

2015 Campus Events

We are currently updating the list below with 2015 activities and events. Please let us know about your campus plans! (In 2014, over 200 higher education institutions hosted NCSAM campus events!)

Also on this page: What is Cyber Security Awareness?, Why is Cyber Security Awareness Important?, Critical Success Factors for Awareness Activities, What is National Cyber Security Awareness Month?, How Do We Plan for NCSAM?, and additional Resources (including links to state, regional, and international efforts).

  • Bellevue University
  • Bridgewater College
  • Cal Poly Pomona: Hosting the 10th annual Cyber Security Fair with the theme "Trick or Treat: Why Your Choices Matter" and an emphasis on women in cybersecurity. (October 29, 2015 in Pomona, CA)
  • Delta College
  • George Washington University
  • Hagerstown Community College
  • Ivy Tech Community College
  • Kent State University
  • Maricopa Community Colleges
  • Marymount University
  • McNeese State University
  • North Carolina State University
  • NWACC Network & Information Security Workshop (September 29 - October 1, 2015 in Portland, OR)
  • Ohio State University: Holding a Security Awareness and Training Day on campus. (October 15, 2015 in Columbus, OH)
  • Pepperdine University
  • Rochester Institute of Technology: Hosting the 2015 Rochester Security Summit. (October 6-7, 2015 in Rochester, NY)
  • Tarleton University Texas Social Media Research Institute
  • University of California, Santa Cruz
  • University of Illinois at Chicago
  • University of Michigan: Hosting the 11th annual Security at University of Michigan IT (SUMIT) Conference. (October 22, 2015 in Ann Arbor, MI)
  • University of Nebraska, Omaha
  • University of Rochester: Hosting the 2015 Rochester Security Summit. (October 6-7, 2015 in Rochester, NY)
  • University of Virginia: Hosting the 12th annual VASCAN Conference with the theme "They Will Get In. What Are We Doing About It?". (October 1-2, 2015 in Charlottesville, VA)
  • Valparaiso University
  • York University

What is Cyber Security Awareness?

The Oxford English Dictionary defines awareness as "The quality or state of being aware; consciousness." Aware is defined as "Informed; cognizant; conscious; sensible."

The purpose of cyber security awareness presentations is simply to focus attention on cyber security. Awareness presentations are intended to allow individuals to recognize information technology security concerns and respond accordingly.

  • The learner is the recipient of information
  • The information reaches broad audiences
  • Attractive packaging techniques are used

We can characterize a user's cyber security awareness level by describing it as the actions a user takes in a given security situation. Do they know about any policies governing that activity? Do they follow the policy? What happens when they are confronted by a new situation that is not addressed by the policy?

Why is Cyber Security Awareness Important?

To protect the confidentiality, integrity, and availability of information in today's highly networked systems environment requires that all individuals:

  • Understand their roles and responsibilities related to the organizational mission
  • Understand the organization's information technology security policy, procedures, and practices
  • Have at least adequate knowledge of the various management, operational, and technical controls required and available to protect the IT resources for which they are responsible

Cyber security awareness programs impress upon users the importance of cyber security and the adverse consequences of its failure. Awareness may reinforce knowledge already gained, but its goal is to produce security behaviors that are automatic. The goal is to make "thinking security" a natural reflex for everyone in the organization. Awareness activities can build in these reflexes both for the security professional and for the everyday user.

Critical Success Factors for Awareness Activities

  • They are based on the organization's policies
  • They have senior management support
  • The focus is on people at all levels of the organization
  • They are effectively planned:
    • Based on user's needs, roles, and interests
    • Identifies security problems in the organization that need addressing
  • They use appealing materials and methods

Awareness programs usually use repetition to reinforce desired behaviors and attitudes about security.

What is National Cyber Security Awareness Month?

National Cyber Security Awareness Month is an annual effort to increase awareness and prevention of online security problems, spearheaded by the U.S. Department of Homeland Security and the National Cyber Security Alliance (NCSA). The Higher Education Information Security Council (HEISC) promotes and participates in the annual campaign each October, joining forces with a range of organizations from the public and private sector to expand cybersecurity awareness on campuses across the country. The Higher Education Information Security Council is offering a range of programs and resources:

How Do We Plan for National Cyber Security Awareness Month?

The following NCSAM Planning Guide worksheet (PDF or Word) will help you to think about how your institution might go about implementing a plan to take advantage of National Cyber Security Awareness Month.

Indiana University offers a NCSAM Sample Kit with creative materials based on a 1950's horror theme, and outlines plans for their use that you can adapt to your institution's needs quickly. With a bit of a printing budget (or your own high quality printer) and some coordination, you can pick and choose which materials will best help you to increase your community's security awareness. Some of the materials are even provided in Spanish! These materials were created and used at Indiana University for National Cyber Security Awareness Month 2005. Indiana University grants permission for non-profit educational use, as long as the credit line and the copyright statement remain on the materials.

Cal Poly Pomona's 2007 presentation describes the development of their Cyber Security Fair in great detail. Tips for starting your own cyber security fair are offered on such topics as determining the target audience, structuring the event, developing a support network, selecting presentation topics & speakers, as well as the associated costs.

The winning posters and videos from previous Information Security Awareness Video & Poster Contests are available for use in campus security awareness campaigns during student orientation, National Cyber Security Awareness Month, Data Privacy Day, and throughout the year. (info) Note: Videos are also available to view on the HEISC YouTube Channel. Posters can be found on the HEISC Facebook page or Pinterest page.

If your group or institution would be interested in a presentation from an information security or privacy expert, please see our Speakers Bureau. You could also use your LinkedIn connections to invite a local, regional, or national speaker to a campus event.

Note: Data Privacy Day occurs each year on January 28. Think about how you might use NCSAM resources to promote this international celebration on your campus, too.

Resources

State and Regional Efforts

International Efforts

(question) Questions or comments? (info) Contact us.

(warning) Except where otherwise noted, this work is licensed under a Creative Commons Attribution-NonCommercial-ShareAlike 4.0 International License (CC BY-NC-SA 4.0).

  • No labels