Beyond the Phish: Building Holistic Cybersecurity Awareness training in Higher Ed

Beyond the Phish: Building Holistic Cybersecurity Awareness training in Higher Ed.

Speaker: Blair T Sawler

This session will explore how NBCC has been developing a holistic security awareness framework tailored for all staff at the institution that extends beyond traditional phishing exercises.

We’ll discuss our journey from a phishing simulation focus to how we have pivoted to enhancing the awareness to focusing on data sharing best practices, ensuring sensitive information is managed properly in line with institutional policies and regulatory requirements.

Our presentation will discuss what we have learned while trying to address preparing staff on how to deal with the evolving threat landscape underscoring the need for all staff to adapt their security awareness with the increasing prevalence of AI-driven attacks and automated threats.

We’ll review how we have been aligning the campaign with emerging best practice guidance, including integrating cybersecurity preparedness and data governance into overall operational planning, rather than depending solely on annual training modules. Attendees will leave with a practical blueprint that expands security awareness from a narrow focus on phishing to an integrated, adaptive, and sustainable approach for capability-building across the entire staff population.

Learning Objectives:

Recognize the limitations of traditional phishing-focused security awareness training and identify opportunities for a more holistic approach within higher education institutions.
Understand the importance of data sharing best practices and the proper management of sensitive information in accordance with institutional policies and regulatory requirements.
Describe strategies for preparing staff to address the evolving cybersecurity threat landscape, including the rise of AI-driven attacks and automated threats.
Evaluate methods for integrating cybersecurity preparedness and data governance into operational planning, moving beyond reliance on annual training modules.

Speaker Bio:

Over the years, Blair has worked in the public and private sectors, including the RCMP, international consulting firms, and government. He has taught in public school and private colleges and ran his own successful consulting business. He has been working in Higher Ed IT for 15 years, starting with the University of New Brunswick, and is now with New Brunswick Community College.

He has led a variety of teams, including Systems, Networks, Data Centre Operations, Desktop, Development, Professional Services, and the Service Desk.

Blair joined the New Brunswick Community College in early 2023 where he leads an amazing Infrastructure Operations and Cybersecurity team. Since joining the College, he has transformed the cybersecurity practice into a college-wide collaborative approach where everyone knows that they play an important part keeping the institution safe.
During their leisure time, Blair and his wife pursue travel opportunities and take pride in watching their sons advance in their respective careers and personal endeavors.