October is Cybersecurity Awareness Month.
With cyber threats rising, the OU Polytechnic Institute (OUPI) is meeting the demand to fill the almost 4,000 vacant cybersecurity jobs in Oklahoma. OUPI at OU-Tulsa offers degree completion programs in applied artificial intelligence, cybersecurity, and software development and integration. OUPI’s faculty boasts more than 200 years of combined industry experience.
Before joining OUPI, Christopher Freeze, Ph.D., assistant professor of cybersecurity, worked as a Special Agent for the FBI and then the executive director of the Mississippi Department of Human Services. Freeze offers insights into cybersecurity, its rapidly growing industry, and how to stay safe from cyber threats.
How does a degree in cybersecurity from OUPI equip a graduate to find a career within the industry?
A cybersecurity degree from OUPI provides students with foundational knowledge and skills. Students learn about network security, information security, cryptography, cyber ethics and law, digital forensics, and security policies and procedures. OUPI classes incorporate hands-on lab work and projects to give students practical experience with security tools and techniques. This includes aligning, when it’s appropriate, its curriculum with industry certifications like CompTIA Security+ and Network+, internships, and a capstone project. Coursework typically covers both technical skills and broader concepts like risk management, compliance, and security governance. Professional skills like communication, problem-solving, and teamwork are often emphasized due to their crucial roles in cybersecurity.
As a former FBI professional, what is your experience working in the cybersecurity field?
The cybersecurity industry is experiencing rapid and substantial growth, making it an attractive field for students who are pursuing a degree. There is a high demand for professionals due to a skills shortage which has led to competitive salaries and potential for international career options. Cybersecurity professionals are needed across countless industries, including healthcare, finance, government, and technology. The field is dynamic, with constantly evolving threats and cutting-edge technology, providing opportunities for ongoing professional development and innovation. Cybersecurity professionals play a crucial role in protecting sensitive data and critical infrastructure.
What are the most significant cybersecurity threats we face today?
The cybersecurity landscape is ever evolving, with new and sophisticated threats emerging regularly. We face significant threats like:
With the ubiquity of smartphones, mobile devices have become a prime target for cybercriminals. Attacks can potentially compromise sensitive data, including banking information and authentication credentials.
As more organizations adopt cloud infrastructure, securing cloud environments has become crucial. Issues like misconfigured cloud storage and insecure Application Program Interfaces (API) present significant risks.
Artificial Intelligence is being leveraged by cybercriminals to automate and scale attacks, analyze security systems to identify vulnerabilities, and create more convincing phishing and social engineering attempts.
The proliferation of Internet of Things (IoT) devices has expanded the attack surface significantly.
Ransomware remains one of the most prevalent and damaging threats. The emergence of Ransomware-as-a-Service (RaaS) has made it easier for criminals to launch attacks, leading to increased frequency and sophistication.
Cybercrime groups, sometimes affiliated with governments, are increasingly using disruptive attacks like Distributed Denial of Services (DDoS) and data wipers to support political agendas.
How can people mitigate cybersecurity risks?
It starts with enhancing security awareness, which includes providing regular cybersecurity training for employees, education about social engineering like phishing and other common attack vectors, and creating a security-oriented culture within your organization. People can strengthen their access controls like using strong unique passwords for all accounts and using multi-factor authentication wherever possible. The risk of compromise increases when people have access they don’t need, so you can adopt the principle of least privilege which grants users only the access they need. Technical safeguards can also be implemented which means keeping all software up to date, using robust antivirus and anti-malware solutions, employing firewalls, and using network segmentation to isolate sensitive data.
