In 2024, higher education is one of the most targeted sectors for cyberattacks globally, with 66% of institutions affected by ransomware*. As digital threats evolve in complexity, organizations must safeguard their systems to protect valuable data from malicious actors. These attacks jeopardize the privacy of students and staff while also disrupting daily operations.
ORION provides cybersecurity solutions tailored to the research and education community’s unique needs. In 2020, ORION initiated the exploration of a Security Information and Event Management (SIEM) proof of concept that evolved into the Shared SIEM pilot. The lessons learned from the pilot informed the development of the ORION Shared Security Operations Centre (ON-SSOC), launched in June 2023.
Enhancing Cybersecurity in Higher Education with ON-SSOC
ON-SSOC is a cloud-based, community-driven platform designed to help institutions monitor and mitigate cyber threats. A dedicated team of expert cybersecurity analysts uses advanced technologies to provide recommendations to prevent and address attacks. ON-SSOC is tailored to the specific needs of the higher education sector, providing an extra layer of protection to enhance the community’s cybersecurity posture.
Since the launch, ORION has expanded ON-SSOC to serve our constituents better. By leveraging threat intelligence shared within the community, we have improved its monitoring capabilities, enabling security teams to respond to issues with efficiency.
Over the past year, ORION has supported universities and colleges to improve their ability to recover from attacks at a lower cost. ON-SSOC has successfully protected a variety of institutions, both large and small, against a myriad of attacks such as malware and remote code execution attempts, which has prevented significant data breaches and operational disruptions. ORION will continue to diligently safeguard the infrastructure of the higher education sector, ensuring ongoing security against emerging threats, so institutions can focus on their core priorities.
Collaborative Cybersecurity with our Community
At the national level, there is a vision of an integrated, Canada-wide, Security Operations Centre known as CanSSOC. Since 2018, ORION has been a proud participant and supporter of the CanSSOC vision. ON-SSOC represents the regional component of this vision for a Canada-wide SOC.
ORION recognizes that cybersecurity is a collective effort, and for this reason, we actively collaborate with partners including the Canadian Centre for Cyber Security (CCCS), CANARIE, CanSSOC, and the Ministry of Public and Business Service Delivery and Procurement (MPBSDP). Strong partnerships like these empower institutions to recognize and respond to threats. By working together and sharing resources, we can identify potential vulnerabilities and implement best practices.
In today’s digital landscape, collaboration is our strongest defence against cyber threats. ON-SSOC empowers educational institutions to enhance their cybersecurity, enabling our community to stay one step ahead of attackers.
Because of ON-SSOC’s technology and team, we are better prepared to mitigate risks and respond to vulnerabilities together. It’s reassuring to have this level of protection to maintain a secure environment for students and staff. It also satisfies our cyber insurance vendor’s need for a SIEM.
As ORION’s federal partner in the National Research and Education Network and CanSSOC, we share our expertise to protect institutions from potential threats. We support ON-SSOC’s proactive solution and see how it continues to strengthen and elevate the security posture of Ontario’s higher education sector.
Empowering Security for Researchers and Educators
In higher education, exploited vulnerabilities and compromised credentials account for two-thirds of ransomware attacks*. As the digital landscape changes, ORION will enhance ON-SSOC to meet the evolving needs of our community. By investing in the latest technologies and staying ahead of emerging threats, ORION empowers organizations to protect their valuable data from malicious actors. ORION will continue to support universities and colleges across Ontario, building a more secure community.
Interested in teaming up with ORION and leveraging the ON-SSOC solution and experience of our partners? Reach out to communitydev@orion.on.ca. Together, we can enhance the cyber resilience of the research and education sectors for years to come.
*Sophos – The State of Ransomware 2023