Skip to content

Office of Cybersecurity

Don't Accept a DUO Push If You Haven't Initiated It

DUO two-factor authentication has been implemented at UTHSC to protect our credentials and to verify that the person wanting access to information is who they say they are. When receiving a DUO notification on your phone, you have the option to DENY the request if you did not initiate it.

Introducing the Phish Bowl 

The Office of Cybersecurity has created the Phish Bowl, a website where you can check to see what has been reported to abuse@uthsc.edu and learn what makes it a phish or a legitimate email. Bookmark the page for an easy way to check and see if what's in your inbox has been reported already. Find the Phish Bowl at https://uthsc.edu/its/cybersecurity/phish-bowl.php

 

Phishing Emails

Concerned about Phishing Emails? Our campus is being targeted by gift card scam phishing attacks. Visit our Phishing Emails  page to see some examples of the gift card scams and read some advise from Dennis Leber, CISO on how to spot the phish. Forward suspicious emails to abuse@uthsc.edu.

Things to Know to Stay Cyber Secure

  1. What to Report: Anything suspicious!
  2. Protect Yourself: Safe computer practices to follow.
  3. Get the Training: The more you know, the better.
  4. Insider Threat: Learn the warning signs. 
  5. Secure Your Device: Lock it up!
  6. Play It Safe: How we help keep your devices protected.
  7. Password Management: Everything you need in one place.
  8. Encrypt Your Email: Sending and Receiving the right way.
  9. Confidential/Classified Information: What it includes and examples
  10. Phishing: Know what it is and how to avoid it!

Hacked? How do you know and what to do?

In today’s environment, it is not so much if your accounts will be compromised, but when. The Office of Cybersecurity offers these tips to know when your accounts (email, social media, banking, etc.) have been hacked and what to do about it when it happens to you. Visit our Hacked page to learn more.

Information Security Awareness Training 

The 2020-21 Information Security Awareness Training course is available in Blackboard. This annual training is required for all members of our campus community. Contact the Office of Cybersecurity (itsecurity@uthsc.edu) with any questions. For more information on this training, see our Training page.

 

 Tips of the Week

Visit the archive of our Tips of the Week if you have missed any, or need a refresher.

The Office of Cybersecurity serves as fundamental technical safeguard for UTHSC. We promote an environment of great ethical standards and observe numerous regulatory risks by:

  • Advancing effective ways to prevent security risk through collaboration
  • Educating employees and the student body about information security
  • Identifying security risks faced by the University.
  • Encouraging an ethical environment that encourages information security preventions
  • Promoting awareness of information security through outreaching events
  • Effective training in the numerous areas of information security
  • Providing a workplace that enables employees to participate in the compliance program without fear of retribution.

Our Team

Dennis Leber
Chief Information Security Officer (CISO)
901.448.6070
dleber@uthsc.edu

Cybersecurity Operations

Ammar Ammar
Manager
901.448.2163
aammar@uthsc.edu

Vulnerability & Patch Management

Justin Self
Cybersecurity Analyst
901.448.1187
jself6@uthsc.edu

Dustin Fehnel
Cybersecurity Analyst
dfehnel@uthsc.edu

Network & Endpoint Protection

Sarah Johnsen-Self
Cybersecurity Analyst
901.448.1116
sjohnsen@uthsc.edu

DevSecOps & Systems Management

Will Irby
Cybersecurity Analyst
901.448.5870
syp228@uthsc.edu

Cybersecurity Governance

Risk Management, Audit, and Outreach Management

Chris Madeksho
Lead Cybersecurity Analyst
901.448.1579
mmadeksh@uthsc.edu

Dan Fast
Security Architect
901.448.5845
dfast@uthsc.edu

Last Published: Nov 10, 2020