All University web hosted services will be at risk of downtime every Tuesday between 7am to 9am.
Close
The Cyber Security Strategy aims to assess, protect and manage the ever-increasing business risks and threats that are posed to the University in the digital world and by doing so will help to ensure our staff, students and partners are protected throughout their journey with the University.
To achieve the cyber security vision for 2021 there are a number of key strategic activities that need to be completed. The strategic activities are aligned into 5 key themes;
Identify
The University needs to develop an understanding of the business context around what is critically important to the activities of the University in the delivery of its Strategic Plan. Having knowledge of the data, systems and information held along with the criticality allows the institution to focus and prioritise its efforts in identifying and managing risks that could hinder its ambitions. This is extremely important in the context of its digital footprint, as managing cyber risks correctly is vital to the operation of the University.
Protect
The University needs to develop and implement safeguards to ensure the critical infrastructure and the data and information the institution manages is appropriately protected. This includes implementing controls and measures to limit and contain the impact of a cyber-attack against the University. This will be achieved using the defence in depth (onion layered) security model. This is extremely important for the safe, continued operation of the University.
Detect
The University needs to develop and implement the appropriate activities to identify occurrences of cyber security incidents in a timely manner. This is critical in the operation of the University to understand the incidents that pose the greatest threat and risk to the institution. This also allows the University to understand which business critical systems have been affected and to what extent.
Respond
The University needs to develop and implement appropriate activities, processes and controls to deal with and take action against, cyber security incidents. This is vitally important for the operation of the University to respond in a precise, consistent manor for all such cyber security incidents. This allows the institution to deal with incidents accurately and effectively whilst still operating its critical business functions.
Recover
The University needs to develop and implement appropriate activities, processes and controls to maintain resilience and to recover from cyber security incidents when they occur. This is vital for the University to return to normal operation as soon as possible after a cyber-security incident.