Helping people report cyber security concerns

"I want people to care about other people’s data”

Michael Jenkins MBE, CISO of Brunel University talks to Sooraj Shah about how his university raises awareness of criminal cyber activity among employees and students.

Michael Jenkins will be speaking at the teissR3 | Resilience, Response and Recovery summit taking place online, 15 - 24 September.

This year, the very popular teissR3 event focuses on how to improve your organisation’s cyber resiliency and adopt best-practice in incident response and crisis management in a post-COVID-19 world. Space is limited. Register your free place by clicking here.

 

Video transcript

Yes, so how are people reporting potential concerns, with regards to cybersecurity things like APT groups and IP theft now?

Well, I think it's quite topical at the moment, because you may have heard in the news that there was a particular company in the US was holding a lot of data for British universities and European universities, and that happened a couple of weeks ago. And I think that sparked considerable scrutiny from our staff, in particular. Actually, one of the measures that we put in place, what do we do, hand over our data to a third party in the supply chain.

And that's been great to see, actually. For me as a CSO that many of our staff and our students indeed, they actually care, and that's probably been one of my strategic games in the messaging space over the course of the last couple of years is that I want people to care about other people's data, and that's been, I guess, a result of very purposeful communications campaigns that my comms team have helped me with to make sure that we, on a regular basis, we're dripping into that community different threats from nation-states, for example, and from serious organised crime. So we just gently and gradually and continually raising awareness amongst our community, the criminals are in play.