Skip to content
  • Home
  • Services
    • Audit & Attest
      • Financial Statement Audits
      • Employee Benefit Plans
      • Attestation Engagements
      • Compilations & Review
      • SOC
      • Agreed-Upon Procedures
    • Advisory
      • Transaction Advisory Services
      • Cybersecurity, Technology Risk, Privacy
      • High Net Worth Services
      • Forensic Services
      • Litigation Services
      • Management Consulting
      • Technology Services
      • Valuation Services
    • Business & Tax
      • Corporate Income Tax
      • Individual Income Tax
      • International Tax
      • State and Local Tax Compliance and Tax Minimization Services
      • Tax Planning
    • T&C Family Office Group
  • Industries
    • Construction & Real Estate
    • Healthcare
    • Manufacturing & Distribution
    • Nonprofit Organizations
    • Private Equity Firms
    • Privately-held Companies
    • Technology & Energy
  • Firm
    • Overview
    • Our People
    • Our Community
    • Templeton Group
      • PracticePro 365
      • T&C Family Office Group
      • Templeton Investigative Services
  • Careers
    • Experienced
    • Students
    • Benefits
  • News
  • Pay My Bill
  • Home
  • Services
    • Audit & Attest
      • Financial Statement Audits
      • Employee Benefit Plans
      • Attestation Engagements
      • Compilations & Review
      • SOC
      • Agreed-Upon Procedures
    • Advisory
      • Transaction Advisory Services
      • Cybersecurity, Technology Risk, Privacy
      • High Net Worth Services
      • Forensic Services
      • Litigation Services
      • Management Consulting
      • Technology Services
      • Valuation Services
    • Business & Tax
      • Corporate Income Tax
      • Individual Income Tax
      • International Tax
      • State and Local Tax Compliance and Tax Minimization Services
      • Tax Planning
    • T&C Family Office Group
  • Industries
    • Construction & Real Estate
    • Healthcare
    • Manufacturing & Distribution
    • Nonprofit Organizations
    • Private Equity Firms
    • Privately-held Companies
    • Technology & Energy
  • Firm
    • Overview
    • Our People
    • Our Community
    • Templeton Group
      • PracticePro 365
      • T&C Family Office Group
      • Templeton Investigative Services
  • Careers
    • Experienced
    • Students
    • Benefits
  • News
  • Pay My Bill
CONTACT US

Five Data Security Tips for Colleges and Universities

  • Blog, Nonprofit, Technology

By Sandra Felnsmith, CPA

As cybersecurity continues to grow as a concern across all industries in the U.S., colleges and universities need to stay ahead of the curve and explore new ways to lock down student, staff and faculty data. The costs of a data breach can be high; according to the Chronicle of Higher Education, the February 2014 hacking of the University of Maryland’s IT systems could cost the university millions of dollars. On top of that, the university must also combat the reputational harm that could come from the leak of its staff’s and students’ personal information. Why are data intrusions at higher education institutions on the rise? In addition to the risk that students, staff and faculty incur in their personal use of university information systems, the sheer amount of personal data stored on university servers makes them attractive to hackers looking to steal and sell identifying information, such as Social Security numbers. Some intruders may also simply be looking to cause some havoc.

Still, one of the more problematic causes behind the growth in cybersecurity breaches at universities is simply that many institutions do not prepare for them. In order to combat this complacency, here are a few steps colleges and universities can take to get ahead of the threat:

1. Understand the various types of cyber attacks.
Knowing the variety of intrusion methods used can help you plan your defense strategy. A substantial number of intrusions occur through phishing, in which a user unwittingly shares his or her password with a hacker. Other methods include the stealth installation of malware on computers, “brute force” attacks where hackers simply guess at passwords, and exploitation of known system vulnerabilities. Sometimes, an intrusion can even be facilitated by careless data protection on the university’s part, such as a failure to use adequate encryption for personal information
stored on its servers.

2. Invest in up-to-date software solutions to protect your systems.
While there’s no silver bullet, a robust package of anti-virus, anti-malware and firewall software installed throughout the system can erect hurdles to unscrupulous hackers looking for kinks in your armor.

3. Implement multilevel credentialing processes for IT users throughout the institution.
A strong password alone may not be sufficient to protect user accounts from intrusions. During one presentation, Brian Rivers and Holley Schramski of the University of Georgia discussed their institution’s new ArchPass system, which involves using a small device to generate a one-time numeric code that users must enter in addition to their passwords to access university systems. This added layer can help halt attacks, even when a hacker has access to a password.

4. Improve awareness cross-campus.
Take the time to educate stakeholders across your organization about best practices for protecting their data. Many attacks can be thwarted with common sense, such as not opening questionable emails and double checking site URLs before entering user credentials.

5. Act quickly to close vulnerabilities as soon as they appear.
With technology changing every day, standards for security protocols can quickly become obscure, and savvy hackers can find new loopholes to exploit. Universities and colleges should monitor for potential vulnerabilities on an ongoing basis and, upon finding them, should quickly remedy them, either by patching them or implementing new systems as needed.

Data security will continue to be a problem in the coming years for all organizations, but ongoing vigilance can go a long way toward helping your institution both anticipate and quickly respond to potential breaches.

For more information contact a Templeton adviser, [email protected].

This article originally appeared in BDO USA, LLP’s “Nonprofit Standard” newsletter (Summer 2014). Copyright © 2014 BDO USA, LLP. All rights reserved. www.bdo.com

 

Categories
  • Agribusiness
  • Assurance, Advisory & Review
  • Audit & Attest
  • Blog
  • Business and Tax
  • Business Consulting & Corporate Compliance
  • Corporate Income Tax
  • Current Opportunities
  • Cybersecurity, Technology Risk, Privacy
  • Employee Benefit Plan
  • Employee Benefit Plans / 401(k)
  • Healthcare
  • High Net Worth Individuals
  • High Net Worth Services
  • Individual Income Tax
  • Industries
  • Manufacturing & Distribution
  • Newsletter Articles
  • Newsletters
  • Nonprofit
  • Press Releases
  • Privately Held Companies
  • Professional Services
  • Real Estate & Construction
  • Retail
  • Services
  • Specialty Tax Services
  • State and Local Tax Complianc
  • T&C Family Office Group
  • Tax Planning
  • Tax Planning & Compliance
  • Technology
  • Uncategorized
  • Valuation Services
  • Valuation Services

SHARE THIS ON:

RELATED POSTS

Could zero-based budgeting work for your organization?

If there’s one word that’s being applied almost universally to the U.S. economy right now, it’s “uncertain.” Although a new law has provided some clarity

Read More »

The One, Big, Beautiful Bill Act provides certainty for estate planning

Ever since the Tax Cuts and Jobs Act (TCJA) was signed into law in 2017, estate planners have had to take into account a looming

Read More »

How to keep cost cutting from increasing fraud risk

In the process of slashing expenses? Just be careful not to cut essential items, such as sufficient staffing to maintain strong internal controls, from your

Read More »

Contact Us

WEST PALM BEACH
Esperante Building
222 Lakeview Avenue
Suite 1200
West Palm Beach, FL 33401
(561) 798-9988
Fax: (561) 798-4053

FORT LAUDERDALE
The Main
201 East Las Olas Boulevard
Suite 1650
Fort Lauderdale, FL 33301
(954) 333-0001
Fax: (954) 765-0719

Twitter Facebook Instagram Youtube Linkedin
© 2025 Templeton & Company. All Rights Reserved. Website by Weber & Co.
Services
  • Audit & Attest
  • Advisory
  • Business & Tax
  • T&C Family Office Group
  • Pay My Bill
  • Audit & Attest
  • Advisory
  • Business & Tax
  • T&C Family Office Group
  • Pay My Bill
Industries
  • Construction & Real Estate
  • Healthcare
  • Manufacturing & Distribution
  • Nonprofit Organizations
  • Private Equity Firms
  • Privately-held Companies
  • Technology & Energy
  • Construction & Real Estate
  • Healthcare
  • Manufacturing & Distribution
  • Nonprofit Organizations
  • Private Equity Firms
  • Privately-held Companies
  • Technology & Energy
Firm
  • Overview
  • Our People
  • Our Community
  • Templeton Group
  • Terms & Conditions
  • Overview
  • Our People
  • Our Community
  • Templeton Group
  • Terms & Conditions
Careers
  • Experienced
  • Students
  • Benefits
  • Experienced
  • Students
  • Benefits