Skip to content
  • Member services
    • Membership Benefits
      • Membership Overview
      • Membership Levels and FAQs
    • Content and Member Resources
    • Maturity Assessment
    • Mentorship Programme
    • PeopleCert CPD Points
    • Professional Skills Management Framework
    • Bookstore
  • Events
    • Events Overview
    • Events Calendar
    • Event Recordings
    • 2025 Signature Events
      • AI in ITSM
      • Digital Transformation Business Simulation (London)
      • Digital Transformation Business Simulation (Newcastle)
      • ITIL Case Study Day 2025
      • ITSM25 Conference & Awards
      • SM Forum: Health & Wellbeing at Work
      • SM Forum: SIAM Future Directions
      • Women in ITSM
      • XLA25
    • Annual Conference and Awards
      • ITSM25 Conference & Awards
      • PSMA25: award nominations are open
      • PSMA24 Awards
    • Communities of Practice
      • Armed Forces
      • Service Design
      • Women in ITSM
    • Introduction to ITSM
    • Leadership Council
    • Masterclasses
    • Member Meet-ups
    • Simulations
    • SM Forums
    • Webinars
  • News & Content
    • Blogs and Whitepapers
    • Latest News
    • Monthly Round-up
    • ServiceTalk
    • Content & Member Resources
  • About Us
    • Who We Are
    • Board and Governance
    • Meet the Team
    • Contact Us
    • Terms & Conditions
    • Accessibility
    • Privacy
  • Join Now
  • Member’s Area
  • Member services
    • Membership Benefits
      • Membership Overview
      • Membership Levels and FAQs
    • Content and Member Resources
    • Maturity Assessment
    • Mentorship Programme
    • PeopleCert CPD Points
    • Professional Skills Management Framework
    • Bookstore
  • Events
    • Events Overview
    • Events Calendar
    • Event Recordings
    • 2025 Signature Events
      • AI in ITSM
      • Digital Transformation Business Simulation (London)
      • Digital Transformation Business Simulation (Newcastle)
      • ITIL Case Study Day 2025
      • ITSM25 Conference & Awards
      • SM Forum: Health & Wellbeing at Work
      • SM Forum: SIAM Future Directions
      • Women in ITSM
      • XLA25
    • Annual Conference and Awards
      • ITSM25 Conference & Awards
      • PSMA25: award nominations are open
      • PSMA24 Awards
    • Communities of Practice
      • Armed Forces
      • Service Design
      • Women in ITSM
    • Introduction to ITSM
    • Leadership Council
    • Masterclasses
    • Member Meet-ups
    • Simulations
    • SM Forums
    • Webinars
  • News & Content
    • Blogs and Whitepapers
    • Latest News
    • Monthly Round-up
    • ServiceTalk
    • Content & Member Resources
  • About Us
    • Who We Are
    • Board and Governance
    • Meet the Team
    • Contact Us
    • Terms & Conditions
    • Accessibility
    • Privacy
  • Join Now
  • Member’s Area
Member's Area
  • Member services
    • Membership Benefits
      • Membership Overview
      • Membership Levels and FAQs
    • Content and Member Resources
    • Maturity Assessment
    • Mentorship Programme
    • PeopleCert CPD Points
    • Professional Skills Management Framework
    • Bookstore
  • Events
    • Events Overview
    • Events Calendar
    • Event Recordings
    • 2025 Signature Events
      • AI in ITSM
      • Digital Transformation Business Simulation (London)
      • Digital Transformation Business Simulation (Newcastle)
      • ITIL Case Study Day 2025
      • ITSM25 Conference & Awards
      • SM Forum: Health & Wellbeing at Work
      • SM Forum: SIAM Future Directions
      • Women in ITSM
      • XLA25
    • Annual Conference and Awards
      • ITSM25 Conference & Awards
      • PSMA25: award nominations are open
      • PSMA24 Awards
    • Communities of Practice
      • Armed Forces
      • Service Design
      • Women in ITSM
    • Introduction to ITSM
    • Leadership Council
    • Masterclasses
    • Member Meet-ups
    • Simulations
    • SM Forums
    • Webinars
  • News & Content
    • Blogs and Whitepapers
    • Latest News
    • Monthly Round-up
    • ServiceTalk
    • Content & Member Resources
  • About Us
    • Who We Are
    • Board and Governance
    • Meet the Team
    • Contact Us
    • Terms & Conditions
    • Accessibility
    • Privacy
  • Join Now
  • Member’s Area
  • Member services
    • Membership Benefits
      • Membership Overview
      • Membership Levels and FAQs
    • Content and Member Resources
    • Maturity Assessment
    • Mentorship Programme
    • PeopleCert CPD Points
    • Professional Skills Management Framework
    • Bookstore
  • Events
    • Events Overview
    • Events Calendar
    • Event Recordings
    • 2025 Signature Events
      • AI in ITSM
      • Digital Transformation Business Simulation (London)
      • Digital Transformation Business Simulation (Newcastle)
      • ITIL Case Study Day 2025
      • ITSM25 Conference & Awards
      • SM Forum: Health & Wellbeing at Work
      • SM Forum: SIAM Future Directions
      • Women in ITSM
      • XLA25
    • Annual Conference and Awards
      • ITSM25 Conference & Awards
      • PSMA25: award nominations are open
      • PSMA24 Awards
    • Communities of Practice
      • Armed Forces
      • Service Design
      • Women in ITSM
    • Introduction to ITSM
    • Leadership Council
    • Masterclasses
    • Member Meet-ups
    • Simulations
    • SM Forums
    • Webinars
  • News & Content
    • Blogs and Whitepapers
    • Latest News
    • Monthly Round-up
    • ServiceTalk
    • Content & Member Resources
  • About Us
    • Who We Are
    • Board and Governance
    • Meet the Team
    • Contact Us
    • Terms & Conditions
    • Accessibility
    • Privacy
  • Join Now
  • Member’s Area

Protecting our universities: cyber attacks and major incidents in the spotlight

  • By Mark Temple
  • August 24, 2023

The main topics of discussion at itSMF UK’s recent sector spotlight on the higher education sector were cybersecurity and major incidents: the showstoppers for which we all rigorously plan but hope to avoid.

Looking back on this event just a few weeks later, it is not lost on me that since then the sector has unfortunately suffered at least another two serious cyber incidents, both leading to extensive disruption to the daily routine of the institutions. 

So what lessons can we learn from the day’s presentations? 

Our first session from Kevin O’Brien and Andy Dunn from CSI offered some excellent advice on what we can do to help prevent a cyber incident – credential management, device management, MFA, traffic/log monitoring, air-gapped backups to name but a few. We then segued into preparing for the worst, and having plans in place should this ever happen – a theme that would run through all the presentations that followed. 

We have all (hopefully) documented and tested our major incident processes – not something you want to be working out after the event, and the same is true for cyber. We need a playbook to help us focus on the task(s) in hand, who does what (roles and responsibilities), lines of communication, impact assessment – the list goes on… 

In short, prepare for the worst, and be ready to adapt your response to the nature of the attack or system failure. 

Our next presentation, from the University of Oxford’s Andrew Dixon and Ian Teasdale, highlighted the great work that they’ve done in the major incident management space, using lessons learned from previous incidents to drive forward a well-defined and understood process, together with a continual improvement culture which has dramatically reduced the number of major incidents.

 Again, there was a strong focus on being ready, and for everyone to know what to do, and who was doing it – clear comms being every bit as important as all of the other activities. Business continuity readiness/testing also came through strongly in this session – don’t wait until you need your data or power backups to find out that you can’t read them or that the fuel tank is empty. The same goes for failover infrastructure. 

What can I say about the next session, “Northumbria University’s cyber-attack – lessons from managing a major incident” presented by their CIO, Simon Corbett? 

It had all the ingredients of a best-selling thriller, but unlike fiction, this was very much for real… 

Simon expanded on the events of September 2020 with real conviction and honesty; not an easy thing to do, given the nature of what they’d been through. We heard first-hand accounts of the situation that Northumbria’s staff and students were faced with, together with a candid walk through of events. The session focussed not just on the incident’s impact and the technical steps to regain control of their landscape, but also plenty of detail on the human side of the event; the whole gamut of anger, stress, and disbelief.

There were obviously many things that couldn’t be said, but we felt your pain, Simon – thank you for sharing! 

Last, but not least, we heard from OpenText’s Mike Rutherford who presented the findings of their extensive research on the state of cyber security in HE. At least a couple of the stats made uncomfortable reading – close to 90% of respondents reporting at least one “successful” cyber attack in the past year, with 70%+ of the same group admitting to still not being as ready to deal with future threats as they would like to be…

All in, and in spite of the dark corners that we explored, it was a very positive event, with plenty to take away whether you work in HE or not. 

Mark Temple

Mark Temple is Assistant Director - Service Management at the University of Glasgow and Scotland Chair of itSMF UK.

Ground Floor South
Burford House
Leppington
Bracknell
Berks RG12 7WW

Tel: +44 (0) 118 918 6500

Linkedin-in Youtube

Disclaimer: Our member environment runs on a separate system. As such, when navigating to member areas on this website you may notice that you are redirected to a different environment.

  • Membership Overview
  • Member Area
  • Events Calendar
  • Board and Governance
  • Latest News
  • Contact Us
  • Membership Overview
  • Member Area
  • Events Calendar
  • Board and Governance
  • Latest News
  • Contact Us
Copyright © 2025 itSMF UK. All rights reserved.
Cleantalk Pixel
Manage Cookie Consent
We use cookies to optimise our website and our service.
Functional cookies Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
Manage options Manage services Manage {vendor_count} vendors Read more about these purposes
View preferences
{title} {title} {title}