Schooling Phish: Promoting Cybersecurity Education in Higher Ed

Phishing and cybersecurity programs are often top-down initiatives in the corporate setting. In higher education, implementing cybersecurity programs requires a collaborative approach with departments and multiple diverse stakeholders. This session will highlight Indiana University's journey from an initial pilot to a vended product implementation, set against the backdrop of real-world attacks. We will highlight how to leverage the educational and collaborative culture in higher ed in order to effectively implement antiphishing cyberawareness programs.

OUTCOMES: Create a plan for implementing a phishing education program at your institution by leveraging past cybersecurity incidents to create buy-in among relevant stakeholders for a phishing education program and develop a blueprint for how phishing education fits into a suite of user-focused cybersecurity offerings (two factor authentication, digital certificates, etc.)