The University of California has been working to address systemwide challenges in cybersecurity and enhance its ability to effectively manage and respond to ongoing threats. A core element of President Janet Napolitano’s plan to strengthen the university’s defenses and fortify it against future cyberattacks is a new UC Cyber-Risk Governance Committee.
I would like to update you on three important action items that have emerged from these efforts.
1) Each of us has a responsibility to safeguard the information that’s entrusted to us. All University of California employees on active payroll status are now required to take Cyber Security Awareness Training, which will be delivered online through the UC Learning Center. The training should take about 50 minutes and must be completed by Jan. 31, 2016 (or within six weeks for subsequent new hires). It will be required annually. Each employee will receive an email notification soon with instructions on how to complete the mandatory training.
2) The UC system is piloting a cyber incident escalation protocol through the end of this calendar year. The protocol establishes consistent means and clear responsibilities across campuses for assessing, responding to, escalating and communicating cyberattacks. A key aspect of this is ensuring that all suspected cybersecurity breaches are promptly reported. Information about reporting procedures is available at http://security.uci.edu/incident.php.
3) Each UC location has appointed an individual to serve as a cyber-risk responsible executive. I will fulfill that duty for UCI, while continuing to rely on Chief Information Officers Dana Roode and Chuck Podesta to coordinate UCI information security efforts.
For more about cybersecurity and how you can protect yourself from cyberattacks, please visit security.uci.edu. If you have questions, please contact the Office of Information Technology help desk at 949-824-2222 or firstname.lastname@example.org.
Enrique J. Lavernia, Ph.D.
Provost and Executive Vice Chancellor
Department of Materials Science and Engineering