Vision 2021

University’s Current Position

The strategy aims to significantly improve the cyber security position of the University in a number of key areas so we as an institution are more secure, informed, aware, reactive and responsive to the ever-increasing cyber threat. There are a number of key objectives to achieve this;

• Increase cyber awareness across the institution at all levels changing behaviours to create a culture that restricts vulnerability by helping those with whom we interact to become part of the defence against cyber related threats.

• Facilitate a cultural change to ensure people are continually aware of the cyber threat and change their perspective on responsibilities around cyber security.

• Change our operating model to be more pro-active in identifying and dealing with cyber threats and risks.

• Reduce our attack surface through the introduction of technology and limit the effect an attack will have on us as an institution.

• Make significant, value-driven changes to our infrastructure to implement the defence in depth (onion model) approach where we achieve security and privacy by design.

• Improve our response and recovery ability to cyber incidents including testing for all known and likely eventualities.

• Introduce a cyber-security framework that sets the guidelines and governance requirements we need to follow to align our development and operational activities to the cyber security strategy aims.

• Continued Executive support and engagement to ensure cyber security remains a present and visible priority within the University.

  These objectives will be delivered through key strategic activities over the duration of the IT Security Programme.