Sign up to save your podcasts
Or
Share Cybersecurity Risk Management in Higher Education—It's Not Just an IT Problem
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Cybersecurity Risk Management in Higher Education—It's Not Just an IT Problem
Higher education institutions are increasingly at risk from cyberattacks that threaten enrollment, accreditation, financial aid compliance, and reputation. In this episode of the Changing Higher Ed® podcast, Dr. Drumm McNaughton speaks with Brian Kelly, Chief Information Security Officer at Community Health Networks of Connecticut and former higher education CISO, about why cybersecurity must be treated as an enterprise risk—not just an IT issue.
This conversation is especially relevant for presidents, trustees, and senior leaders who need to understand how cyber risk intersects with governance, strategic planning, crisis management, and accreditation readiness.
Topics Covered:
-
Why higher education is a prime target for cyberattacks
-
How ransomware and data breaches disrupt core institutional functions
-
The governance responsibilities of boards in overseeing cybersecurity
-
Cyber implications for strategic planning and reputation management
-
Why accreditation and compliance can be undermined by cyber breaches
-
Protecting research and intellectual property from cyber threats
-
Building a campus culture of shared cybersecurity responsibility
-
The leadership succession gap in higher ed cybersecurity
-
Core practices every institution should adopt during Cybersecurity Awareness Month
Real-World Examples Discussed:
-
United Healthcare and Social Security data compromises
-
PowerSchool breach exposing minors to identity theft
-
Target and Home Depot breaches as case studies in reputational damage
-
F-35 design theft highlighting the value of intellectual property
-
Scam examples including PayPal fraud, fake purchase confirmations, and LinkedIn phishing
-
Leadership succession in action: Cathy Hubbs' retirement and Harry Hoffman's appointment
Three Key Takeaways for Higher Ed Leadership:
-
Plan for resilience, not just prevention—institutions must continue to operate during and after cyber incidents.
-
Make cybersecurity a shared responsibility—leaders must ensure accountability across the campus community.
-
Include cyber in board oversight—cyber risk is part of governance, enterprise risk management, and accreditation readiness.
Read the transcript or extended show summary: https://changinghighered.com/cybersecurity-risk-management-in-higher-education/
#HigherEdCybersecurity #BoardGovernance #HigherEducationPodcast
View all episodes
By Dr. Drumm McNaughton
5
88 ratings
Higher education institutions are increasingly at risk from cyberattacks that threaten enrollment, accreditation, financial aid compliance, and reputation. In this episode of the Changing Higher Ed® podcast, Dr. Drumm McNaughton speaks with Brian Kelly, Chief Information Security Officer at Community Health Networks of Connecticut and former higher education CISO, about why cybersecurity must be treated as an enterprise risk—not just an IT issue.
This conversation is especially relevant for presidents, trustees, and senior leaders who need to understand how cyber risk intersects with governance, strategic planning, crisis management, and accreditation readiness.
Topics Covered:
-
Why higher education is a prime target for cyberattacks
-
How ransomware and data breaches disrupt core institutional functions
-
The governance responsibilities of boards in overseeing cybersecurity
-
Cyber implications for strategic planning and reputation management
-
Why accreditation and compliance can be undermined by cyber breaches
-
Protecting research and intellectual property from cyber threats
-
Building a campus culture of shared cybersecurity responsibility
-
The leadership succession gap in higher ed cybersecurity
-
Core practices every institution should adopt during Cybersecurity Awareness Month
Real-World Examples Discussed:
-
United Healthcare and Social Security data compromises
-
PowerSchool breach exposing minors to identity theft
-
Target and Home Depot breaches as case studies in reputational damage
-
F-35 design theft highlighting the value of intellectual property
-
Scam examples including PayPal fraud, fake purchase confirmations, and LinkedIn phishing
-
Leadership succession in action: Cathy Hubbs' retirement and Harry Hoffman's appointment
Three Key Takeaways for Higher Ed Leadership:
-
Plan for resilience, not just prevention—institutions must continue to operate during and after cyber incidents.
-
Make cybersecurity a shared responsibility—leaders must ensure accountability across the campus community.
-
Include cyber in board oversight—cyber risk is part of governance, enterprise risk management, and accreditation readiness.
Read the transcript or extended show summary: https://changinghighered.com/cybersecurity-risk-management-in-higher-education/
#HigherEdCybersecurity #BoardGovernance #HigherEducationPodcast
More shows like Changing Higher Ed
View all
Freakonomics Radio
32,051 Listeners
Wait Wait... Don't Tell Me!
38,911 Listeners
The NPR Politics Podcast
25,841 Listeners
Teaching in Higher Ed
371 Listeners
Pivot
9,626 Listeners
On Being with Krista Tippett
10,172 Listeners
Up First from NPR
56,638 Listeners
Future U Podcast - The Pulse of Higher Ed
136 Listeners
The Key with Inside Higher Ed
52 Listeners
SmartLess
57,799 Listeners
The Ezra Klein Show
16,049 Listeners
City Cast Denver
497 Listeners
On with Kara Swisher
3,496 Listeners
College Matters from The Chronicle
84 Listeners
Colorado Today
52 Listeners