Sign up to save your podcasts
Or
Share Cybersecurity Risk Management in Higher Education—It's Not Just an IT Problem
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Cybersecurity Risk Management in Higher Education—It's Not Just an IT Problem
Higher education institutions are increasingly at risk from cyberattacks that threaten enrollment, accreditation, financial aid compliance, and reputation. In this episode of the Changing Higher Ed® podcast, Dr. Drumm McNaughton speaks with Brian Kelly, Chief Information Security Officer at Community Health Networks of Connecticut and former higher education CISO, about why cybersecurity must be treated as an enterprise risk—not just an IT issue.
This conversation is especially relevant for presidents, trustees, and senior leaders who need to understand how cyber risk intersects with governance, strategic planning, crisis management, and accreditation readiness.
Topics Covered:
-
Why higher education is a prime target for cyberattacks
-
How ransomware and data breaches disrupt core institutional functions
-
The governance responsibilities of boards in overseeing cybersecurity
-
Cyber implications for strategic planning and reputation management
-
Why accreditation and compliance can be undermined by cyber breaches
-
Protecting research and intellectual property from cyber threats
-
Building a campus culture of shared cybersecurity responsibility
-
The leadership succession gap in higher ed cybersecurity
-
Core practices every institution should adopt during Cybersecurity Awareness Month
Real-World Examples Discussed:
-
United Healthcare and Social Security data compromises
-
PowerSchool breach exposing minors to identity theft
-
Target and Home Depot breaches as case studies in reputational damage
-
F-35 design theft highlighting the value of intellectual property
-
Scam examples including PayPal fraud, fake purchase confirmations, and LinkedIn phishing
-
Leadership succession in action: Cathy Hubbs' retirement and Harry Hoffman's appointment
Three Key Takeaways for Higher Ed Leadership:
-
Plan for resilience, not just prevention—institutions must continue to operate during and after cyber incidents.
-
Make cybersecurity a shared responsibility—leaders must ensure accountability across the campus community.
-
Include cyber in board oversight—cyber risk is part of governance, enterprise risk management, and accreditation readiness.
Read the transcript or extended show summary: https://changinghighered.com/cybersecurity-risk-management-in-higher-education/
#HigherEdCybersecurity #BoardGovernance #HigherEducationPodcast
View all episodes
By Dr. Drumm McNaughton
5
88 ratings
Higher education institutions are increasingly at risk from cyberattacks that threaten enrollment, accreditation, financial aid compliance, and reputation. In this episode of the Changing Higher Ed® podcast, Dr. Drumm McNaughton speaks with Brian Kelly, Chief Information Security Officer at Community Health Networks of Connecticut and former higher education CISO, about why cybersecurity must be treated as an enterprise risk—not just an IT issue.
This conversation is especially relevant for presidents, trustees, and senior leaders who need to understand how cyber risk intersects with governance, strategic planning, crisis management, and accreditation readiness.
Topics Covered:
-
Why higher education is a prime target for cyberattacks
-
How ransomware and data breaches disrupt core institutional functions
-
The governance responsibilities of boards in overseeing cybersecurity
-
Cyber implications for strategic planning and reputation management
-
Why accreditation and compliance can be undermined by cyber breaches
-
Protecting research and intellectual property from cyber threats
-
Building a campus culture of shared cybersecurity responsibility
-
The leadership succession gap in higher ed cybersecurity
-
Core practices every institution should adopt during Cybersecurity Awareness Month
Real-World Examples Discussed:
-
United Healthcare and Social Security data compromises
-
PowerSchool breach exposing minors to identity theft
-
Target and Home Depot breaches as case studies in reputational damage
-
F-35 design theft highlighting the value of intellectual property
-
Scam examples including PayPal fraud, fake purchase confirmations, and LinkedIn phishing
-
Leadership succession in action: Cathy Hubbs' retirement and Harry Hoffman's appointment
Three Key Takeaways for Higher Ed Leadership:
-
Plan for resilience, not just prevention—institutions must continue to operate during and after cyber incidents.
-
Make cybersecurity a shared responsibility—leaders must ensure accountability across the campus community.
-
Include cyber in board oversight—cyber risk is part of governance, enterprise risk management, and accreditation readiness.
Read the transcript or extended show summary: https://changinghighered.com/cybersecurity-risk-management-in-higher-education/
#HigherEdCybersecurity #BoardGovernance #HigherEducationPodcast
More shows like Changing Higher Ed
View all
Freakonomics Radio
32,333 Listeners
Wait Wait... Don't Tell Me!
38,816 Listeners
The NPR Politics Podcast
25,924 Listeners
Teaching in Higher Ed
374 Listeners
Pivot
9,742 Listeners
On Being with Krista Tippett
10,156 Listeners
Up First from NPR
56,969 Listeners
Future U Podcast - The Pulse of Higher Ed
146 Listeners
The Key with Inside Higher Ed
57 Listeners
SmartLess
58,904 Listeners
The Ezra Klein Show
16,410 Listeners
City Cast Denver
502 Listeners
On with Kara Swisher
3,497 Listeners
College Matters from The Chronicle
84 Listeners
Colorado Today
53 Listeners