The University’s New Cyber Task Force Announced
The University’s new Cyber Task Force was announced at this year’s Cybersecurity Interest Group (CSIG), which took place in St Luke’s Chapel on Friday 3 November.
The Information Security Office (InfoSec) along with the Cybersecurity Competency Centre have announced the University’s Cyber Taskforce at the Cyber Security Interest Group (CSIG). This initiative has been spearheaded by the InfoSec team to bring OxCERT’s expertise to support the collegiate university at a local level.
This was the first CSIG since 2019 and was well attended by Professional Services staff from across the Collegiate University. The session included a threat update from the University’s digital forensics provider (NCC Group). The CISO, Graham Ingram, and his team, gave a capability update explaining the tools and techniques used to deliver cyber security across the collegiate university.
The first session was followed by a coffee break and included workshop elements to kick-off the development of InfoSec 2.0. The current programme is over halfway through with some 25 planned interventions delivered or in-flight. Attendees off the CSIG were able to add their views of what is needed in the next revision of the InfoSec programme. Ideas included expanded monitoring enabled with Machine Learning and Artificial Intelligence to spot threats before they become security incidents. With the awareness gained from the NCC brief first thing, delegates of the CSIG were recommending stronger measures to ensure devices wishing to connect to our networks are up to date and compliant with policy.
In the second session, Alwyn Collinson, Head of the Competency Centres, which is part of Digital Transformation, gave an update on the work the Cybersecurity Competency Centre has been doing including the CISMP training of staff, and also announced the new Cyber Task Force. Drew Faulkner gave a detailed explanation of the ‘what’ and ‘why’ surrounding ongoing and forthcoming cyber security projects. These projects are largely enabled by the wider Digital Transformation Programme.
The Taskforce will be made up Cyber Champions who will be located across departments, divisions, and colleges. Each Cyber Champion will spend one day week working directly with OxCERT and Information security teams and undertaking training. Our initial aim is to have one Cyber Champion in each division and college group. The work a Cyber Champion will support OxCERT and GRC teams at a local level.
Each Cyber Champion will:
- provide advanced security practices to their college or department
- create and facilitate best practice information security for their college or department
- be the single point of contact between OxCERT and their college or department
- be the first line incident response
- provide best practice, check and maintain security, such as local assets, network etc.
- have access to the University Tools including SAVANT
- have regular meetings with OxCERT and GRC as well as other cybersecurity networks within the collegiate university.
Cyber Champions will be selected by InfoSec and the Competency Centre. A Cyber Champion should have completed and passed the CISMP training or equivalent. They will also need to meet our criteria in the application and interview, which will be explained when you are contacted.
As Cyber Champions, you will be provided with more enhanced training on a personal training pathway, which will include being CompTIA- security and Security first responder trained. These courses will be provided free by the University and usually take up five days of training. These Champions will also have fast track access to OxCERT and GRC teams as well as hands on training with OxCERT staff.
If you think you could be a Cyber Champion, please complete this form.
Photos from the Cyber Security Interest Group at St Luke's Chapel