When FireEye announced on December 13, 2020, that it had discovered that SolarWinds had been compromised by a nation-state actor, the University of California immediately began to assess whether we had been impacted. This presentation will walk through the details surrounding the SolarWinds event and its impact on the University of California, including how we managed the event. We will discuss the sequence of events from the initial alert to present day, and highlight our overall cyber response to the event as well as how we handled communications with our 10 campuses and five medical centers, UC leadership, and our Board of Regents. We will also share our lessons learned and how this event put supply chain risk in the spotlight. Attendees, many of whom also had to manage the event at their organizations, will be encouraged to share their experiences through a live polling app.
