|Irwin Gaines gives a talk at a past Computer Security Awareness Day. Photo: Reidar Hahn|
It is incumbent upon Fermilab’s computer security team to ensure that our user community is well-trained and aware of cybersecurity issues. We are constantly reminded by cybersecurity incidents and near misses that uninformed or careless actions by a single individual can put the laboratory’s entire computing infrastructure at risk. No matter how strong our walls of defense are, we must ensure that those authorized to use our systems are sufficiently trained to avoid inadvertent breaching of these defenses.
One way to train and inform our user community is through our annual Computer Security Awareness (CSA) Day, which takes place tomorrow, Tuesday, Nov. 11, in Wilson Hall.
CSA Day will feature two types of presentations. In the morning, all of the ITNA-required cybersecurity and privacy classes will be offered as lecture classes, allowing employees, visitors and contractors to meet their training requirements without having to take an online test. Users can register for these classes in advance or show up on Tuesday morning and sign in. Advanced and Basic PII (Personally Identifiable Information) training will be given at 9 a.m. and 10 a.m., respectively, in Wilson Hall One East. Basic Computer Security, Security Essentials for Desktop System Admins and Security Essentials for Fermilab System Admins will be given at 9 a.m., 10 a.m. and 11 a.m., respectively, in Wilson Hall One West.
Note that the PII classes only need be taken once, but the cybersecurity classes must be retaken every two years, either in person or online. Your supervisors will appreciate you keeping your training up to date, so they (and you) can avoid reminders about overdue training!
In the afternoon, there will be a series of topical presentations on security-related issues of current import starting at 1 p.m. in Wilson Hall One West. These sessions will include talks on security for mobile devices, new authentication techniques and federated identity and on the latest Internet threats. The security staff will also be available for informal discussions of recent cyber events. View the full agenda.