National Cyber Security Awareness Month would not have been so brilliantly successful in 2015 if hadn’t have been for the involvement of our Board, Partners and Champions. In this blog, we take a look back at what they did last October
NCSA Board of Directors’ Companies
ADP participated in NCSAM 2015 in the following ways:
- Communications: Distributed internal communication to employees throughout the month, including emails, blog posts, intranet articles and internal social media engagement and set up tables in high-traffic office areas around the globe to distribute handouts and answer questions.
- Internal Contests: Held two contests for employees – one about social engineering and another, more broad, contest encouraging employees to take action and submit their independent participation during the month – as part of a bigger contest to determine ADP’s Security Awareness Month Champions (the business unit with the most participation in the month).
- Events: Hosted live and webcast sessions globally on various security awareness topics.
- Social Media: Promoted #CyberAware and partnership with NCSA on external social media.
Cisco developed an integrated marketing plan across the company to include the public sector, security and trust, HR and all staff, security products, product security and information security education and awareness. Highlights include:Communications: Developed weekly submissions on the Cisco Security blog aligned to NCSAM’s themes, contributed guest blogs to the StaySafeOnline.org and contributed Connected Futures articles and a podcast.
- Social Media: Amplified the NCSAM message over social media using branded #CyberAware and @StaySafeOnline content and images, participated in #ChatSTC Twitter chats, held a #CiscoChat Twitter chat and re-promoted existing relevant content.
- Employee Engagement: Encouraged employee participation and engagement through Cisco 360 and CEC.
- Partnerships and Sponsorships: Partnered with CSR and Net Academy and was a platinum sponsor of NCSA’s Nasdaq event in New York.
- Events and Speaking Engagements: Participated in Gartner ITXpo – Security Sessions, Best of Breed 2015 – Chambers speaking, CIO Summit – Security Sessions, IoT Security Annt, Global Editors Conference, IoT Value at Stake Research and Global Cloud Index.
For the fifth consecutive year, Facebook supported NCSAM with a month-long employee education and engagement program called Hacktober. The initiative included simulated threats, workshops, contests and special events all designed to foster and sustain a culture of security.
- National Morning Show Coverage: Facebook worked with NCSA on a segment for the TODAY Show to highlight a few things companies can do to build systems, consumer tools and employee education programs that strengthen security and help make the Internet safer. The segment aired nationally on October 20 with additional pick-up by MSNBC and in 80 local markets.
- New Tips: Facebook shared a new set of top security tips for small businesses to help them protect their Facebook Pages and accounts. These recommendations include assigning appropriate roles for Page admins, securing mobile devices and turning on Login Approvals for two-factor authentication.
Logical Operations, the world’s leading provider of information technology instructor-led courseware and a NCSAM Champion, is committed to cybersecurity and online safety. Throughout October, Logical Operations participated in numerous events and initiatives in support of NCSAM including but not limited to:
- Webinar and PSAs: Hosted a free webinar on October 8 titled “3 Actions Employees Can Take NOW to Combat Cyber Threats” and participated in NCSA’s weekly Twitter chats that tackle current cybersecurity topics. In addition, Logical Operations created Cyber Security Public Service Announcement flyers designed for companies to share and post within their company to help employees recognize and avoid security threats before it is too late.Event: Logical Operations also sponsored the “Securing the Internet of Things” luncheon at Nasdaq on October 19th, and Bill Rosenthal, CEO of Logical Operations and a member of the Board of Directors of the National Cyber Security Alliance (NCSA), joined the NCSA for the Closing Bell Ceremony to support NCSAM.
- Insight from Logical Operations’ CEO: “Logical Operations was thrilled to support National Cyber Security Awareness Month,” said Bill Rosenthal, CEO, Logical Operations. “We know that people are key to protecting themselves and their organizations from cyber attacks; in fact, end-user awareness and training reduces security-related risks for organizations by 45% to 70%. That’s why we are dedicated to enabling professionals with the skills to detect and avoid cyber threats through our instructor-led cybersecurity training programs.”
Raytheon participated in a number of NCSA’s October initiatives and led its own campaign efforts as well. Highlights include:
- Digital communications: Published five stories on RaytheonCyber.com with rich content, including a Cyber IQ quiz, a survey on the online habits and attitudes of young adults, a video about Raytheon’s cyber range capabilities, a NCSAM activity preview and a guest post by Michael Kaiser, and contributed a guest blog post by Jeff Jacoby on StaySafeOnline.org, “Calling All Millennials: The Internet Needs Your Help”.
- Advertising: Took over every inch of advertising space in the Capitol South Metro station in Washington, DC, all month long to mark NCSAM and contributed ad posters inside the Mount Vernon station as part of Raytheon’s campaign for the Association of the U.S. Army’s annual meeting.
- Global cyber career survey rollout: Released the results of the 2015 survey Securing Our Future: Closing the Cyber Talent Gap, which polled nearly 4,000 young adults in 12 countries about interest in and preparedness for cybersecurity careers, as the basis for a truly international campaign; published supporting material, including a feature story, three reports and five infographics, which were disseminated in various regions and countries; coverage was generated in USA Today, Inc. Magazine, POLITICO, FOX News Radio, The Wall Street Journal, CIO, FoxBusiness.com, Dark Reading Radio, eWeek and many more in the United States and internationally.Events: Launched the global results of the Securing Our Future study at the National Press Club in Washington, DC; participated in NCSA’s events at Nasdaq MarketSite in New York City, with DOMino program manager Valecia Maclin joining the U.S. Department of Homeland Security (DHS) and NCSA on stage to ring the closing bell; and participated in NCSA and Passcode’s “Talent Hack: Solutions for the Cybersecurity Skills Gap” event in Washington, DC, with Raytheon VP of Human Resources and Security Darren Burton remarking on the 2015 study.
- Social media: Amplified Raytheon content and other NCSAM messages on social media channels, yielding a reach of 1.46 million and more than 7,000 engagements from 185 posts in October.
RSA Conference (RSAC), part of NCSA board member company RSA, the Security Division of EMC, participated in a number of initiatives in honor of NCSAM. Highlights include:
- Website branding, initiatives and content: Rebranded the RSA Conference website for the month of October to include visuals and messaging regarding the Cyber Safety Village and CyberSafety: Kids initiatives, added new cyber safety videos and resources to the website and hosted a webcast featuring SANS Securing the Human Director Lance Spitzner to discuss the top risks facing kids online and what parents can do to protect them.Communications: Included messaging about NCSAM in RSA Conference’s monthly newsletter, published several blog posts during the month, created an infographic for cyberaware parenting and authored an Engadget piece on including cyber safety in “the talk.”
- Social media: Collected data and interviewed advisory board members for topics and themes to share throughout the month, used the #CyberAware hashtag to share content related to RSAC’s new cyber safety videos, infographic, blog posts and other initiatives and NCSA’s NCSAM Twitter chats.
- Onsite event awareness: Led a presence at RSA Security’s event RSA Charge to discuss the CyberSafety: Kids initiative and distributed T-shirts for kids and printed resources for parents and provided CyberSafety:Kids and Parent Ed videos to the Tech Museum of Innovation, which showed them in the Venture Hall and promoted them via social media during the month.
CompTIA, the IT industry trade association (http://comptia.org), participated in NCSAM with a survey, social experiment and training program launch. The survey and social experiment were conducted to gauge how aware today’s workers are about good cybersecurity habits, and to show how at risk they and their employers may be as a result. The training program was designed as an educational solution for businesses to make their employees more aware of the cybersecurity risks.Survey: CompTIA’s survey polled 1,200 full-time employees working in the U.S. on their use of technology and their cybersecurity habits. The results showed a significant number of workers practice unsafe cybersecurity habits. In addition, CompTIA ran a social experiment to observe consumers’ cybersecurity habits. In cities across the US, 200 USB sticks were dropped in public spaces, pre-loaded with text instructions for anyone who plugged it in.
- Social Experiment Results: The experiment (referenced above) revealed that 17% – nearly one in five – USBs were plugged in to devices, with users opening a text file and either clicking on a link or sending an email to an address that was provided. CompTIA created a white paper (https://www.comptia.org/resources/cyber-secure-a-look-at-employee-cybersecurity-habits-in-the-workplace) and infographic (https://www.comptia.org/resources/infographic-8-cybersecurity-commandments-workers-should-follow) to help communicate the message to a broad audience.
- Training Program Launch: CompTIA developed CyberSecure, an online, interactive security training program designed specifically for every employee. As the leader in comprehensive, broad-based technology certifications, CompTIA built CyberSecure with the help of the IT industry – subject matter experts in how to remain secure online.
- News Coverage: The survey, experiment, and training program have garnered strong interest from major media outlets including NPR, Bloomberg Radio, the Wall Street Journal and NBC News in Chicago; as well as industry trade and business publications.
EDUCAUSE, one of NCSA’s longtime partners, collaborated with many institutions in the higher education community for another successful NCSAM. Here are a few highlights from EDUCAUSE’s 2015 efforts:
- NCSAM Champions: 143 higher education institutions showed their support as official Champions, along with individuals, businesses, organizations and government agencies (this is an increase from 140 higher education Champions in 2014)
- NCSAM Activities: More than 200 institutions shared their plans during the month of October
- Guest Blogs: Between late September and early November, 30 guest bloggers provided fresh security and privacy content almost daily in the new EDUCAUSE Review Security Matters blog column (EDUCAUSE published 28 guest blogs for NCSAM 2015 compared with 13 in 2014)
- Webinars: Recordings are available for the October 7 EDUCAUSE Live! Webinar – in which Michael Kaiser participated (Creating a Culture of Cybersecurity and Safety on Your Campus and in Your Community) and the October 21 InCommon IAM Online webinar (Multifactor Authentication: Campus Deployment Case Studies); approximately 200 attendees participated in each of the webinars.
- Twitter: Colleges and universities joined the daily #CyberAware conversation and weekly #ChatSTC Twitter chats to help share resources and tips; EDUCAUSE (via the @HEISCouncil Twitter handle) also participated in multiple Twitter chats hosted by NCSA in September and October on behalf of the higher education community.
- 2015 Keystone Event: EDUCAUSE partnered with NCSA and DHS to host a national-level NCSAM keystone event at the 2015 EDUCAUSE Annual Conference in Indianapolis; on October 28, Eric Goldstein (DHS) presented “The Importance of a Cybersecurity Education” to more than 200 face-to-face attendees and more than 120 online participants.
Identity Theft Resource Center
The Identity Theft Resource Center (ITRC), one of NCSA’s trusted partners, was active during NCSAM 2015. Highlights include:
- Identity Theft: The Aftermath study: Released the annual study, in-depth look at the experiences of identity theft victims who had contacted the ITRC for help in the past year; used the findings to produce a whitepaper released in correlation with NCSAM and held an event to mark the release, bring attention to the study findings and raise awareness about the aftermath of identity theft for everyday consumers.
- Social media: Participated in weekly #ChatSTC Twitter chats throughout the month, used the #CyberAware hashtag on social media and shared NCSA’s memes and other social media content.
NCSAM 2015 Champions
Connecticut College participated in NCSAM 2015 in a number of ways. Highlights include:
- Events and presentations: Hosted an on-campus presentation highlighting campus security efforts, a discussion on the cyber battlefield, featuring an industry expert and alumnus from FireEye and three “Speak to a Geek” sessions at which students could get technical information and help loading virus protection.
- Resources: Placed cybersecurity posters throughout campus; displayed cybersecurity books, movies and government documents in the campus library; and posted security tech tips on digital displays and the college intranet.
Corporate Office Properties Trust
Corporate Office Properties Trust, an office real estate investment trust that specializes in acquiring, developing, owning, leasing and managing office and data center properties, registered as a NCSAM 2015 Champion and participated in the following additional ways:
- Internal efforts: Distributed weekly messaging via email and the company intranet on various cybersecurity topics, used STOP. THINK. CONNECT. signature blocks on all IT personnel emails throughout October, displayed STOP. THINK. CONNECT. posters at all office locations and worked with IT team members in an effort for employees to assume one another’s identities in their name badges to stress the importance of protecting personal information.
Dell registered as a NCSAM Champion and participated in a number of other efforts throughout October. Highlights include:
- Cybersecurity awareness campaign: Ran a month-long campaign that focused on sharing actionable knowledge to help individuals and organizations assess their cybersecurity readiness now while preparing for the future, including weekly themes on today’s security imperatives and conducted internal outreach to raise cybersecurity awareness among Dell employees.
- Web and social media: Created a campaign landing page for the month (Dell.com/CyberAware); published 11 blogs, 4 videos, 3 white papers, 2 infographics and a case study during the month; and conducted daily social outreach via Twitter and LinkedIn using the hashtag #CyberAware.
Georgia Bankers Association
The Georgia Bankers Association, the trade group representing all FDIC-insured banks doing business in Georgia, registered as a NCSAM Champion and participated in the month in a variety of other ways. Participation included:
- Media: Contributed op-eds that were placed in the Atlanta Journal Constitution, Marietta Daily Journal, Albany Herald and North Atlanta Business Post and contributed a tips article, which was placed in Georgia CEO online publications.
- Member communication and participation: Provided customizable news releases and tip sheets for customers to banks, promoted NCSAM weekly in a member email newsletter and worked with 31 member banks, which signed up to participate.
- Social media: Participated in NCSAM by sharing content over Twitter, Facebook and LinkedIn during October.
GreyCastle SecurityGreyCastle Security, a cybersecurity consulting firm focused on risk management, operational security and awareness, registered as a NCSAM 2015 Champion and participated in the following additional ways throughout October:
- Web and communications: Launched a three-part cybersecurity awareness webinar series and a month-long NCSAM email campaign.
- Events: Hosted a3rd annual cybersecurity symposium focusing on cybercrime in Tech Valley and changing attitudes and behaviors and spoke at a variety of conferences during October on cybersecurity topics.
The Griffiss Institute (GI), which works to advocate and facilitate the cooperation of private industry, academic and government in developing solutions to cybersecurity problems, signed on as a NCSAM 2015 Champion and participated in the month in a number of ways. Highlights include:
- Web and social media: Set social media profile pictures to the NCSAM logo; shared tips, facts, memes and photos every day on Facebook, LinkedIn, Google+ and YouTube; posted the NCSAM web banner on the GI website; and linked to NCSAM from the GI homepage.
- Media: Issued a NCSAM awareness press release.
- Internal communications: Hung posters around the GI facility to be seen by those who rent out rooms and distributed NCSAM certificates and buttons to GI employees.
Netsurion, a company that provides remotely managed network and data security services for multi-location businesses, registered as a NCSAM 2015 Champion. Additional participation included:
- Social media: Participated in NCSA’s #ChatSTC Twitter chats throughout the month
- Customer promotion/communication: Offered new customers three free months of service if they signed up during October and issued nearly 10,000 payment data protection seals to restaurants and retailers to post on their storefront windows to raise awareness of the value of cybersecurity and reassure consumers about the security of their credit card data at those locations.
Saint Louis University
Saint Louis University planned to engage as many students, faculty and staff as possible in security discussions. Participation included:
- Resources: Set up tables around campus that had wheels people could spin to land on – and learn about – different cybersecurity topics; participants received T-shirts and handouts on mobile device security, two-factor authentication, health privacy and more; more than 500 people visited these tables.
Santa Cruz County, Arizona
Santa Cruz County, located in southern Arizona, was a NCSAM 2015 Champion and participated in NCSAM activities throughout the month. Participation included:
- Internal communications: Printed and distributed flyers throughout the departments and on bulletin boards and distributed newsletters in recognition of NCSAM to all employees.
- External outreach: Proclaimed October as NCSAM during a public meeting (additionally, briefly discussed NCSAM and shared statistics and tips for staying safe online), shared NCSA’s sample NCSAM social media content on Twitter and updated the county website’s emergency alert to mark October as NCSAM throughout the month.
Savvy Cyber Kids
Savvy Cyber Kids, a frequent Champion of NCSAM that works to empower and educate young digital citizens, participated in NCSAM 2015 in a number of ways. Highlights include:
- Resources: Released a new cyber awareness guide, Empowered by Instagram: Talking to your child about cyberethic and privacy.
- Events: Held The Super Run Atlanta, a cyber awareness event with roughly 500 attendees, and spent a day presenting cyber awareness sessions for students, teachers and parents at a private school in Atlanta.
SecureTech360, a NCSAM 2015 Champion and a STOP. THINK. CONNECT. partner, is a women- and minority-owned, service-disabled IT, cybersecurity and unified communications firm. SecureTech360 participated in the month in the following ways:
- Events: Presented at the Women’s Business Center of Northern Virginia’s Wine and Cheese Cyber-Social event; held a seminar for employees and their children about online safety; held a free seminar for small business owners who might not be able to afford full consultations on best practices for keeping their businesses safe online
Shred-it, the leader in information destruction providing services around the globe for protection of customers’ information and reputations and the environment, registered as a NCSAM Champion and participated in NCSAM in the following ways:
- Media: Issued a press release resulting in media coverage from 151 outlets across North America.
- Web and social media: Supported NCSAM through online activities, including blog posts shared with Shred-it’s entire database of subscribers and weekly social media posts; shared cybersecurity tips and resources and NCSA materials over social media; participated in two #ChatSTC Twitter chats during the month; and partnered with fellow NCSAM Champion Sticky Password, providing a guest blog for its NCSAM blog campaign.
United Way of Metropolitan Dallas
United Way, the largest non-governmental funder of health and human services in North Texas focusing on community-wide improvements in health, education and income, was a NCSAM Champion and participated in the following ways:
- Resources: Displayed a series of security awareness posters in elevator lobbies throughout the month, placed informational cards with safe web use tips for seniors and children in common staff areas and set up a phishing awareness display and tip sheets in a common staff area.
- Contests and challenges: Ran daily contests to determine awareness based on the security content available in the office (winners received special “Spammy Awards” made by the IT staff and gag awards for runners-up) and issued a $100 cash to any employee who could catch the vice president of IT’s computer unlocked when he was absent.