Cyber security

Cyber security manager: “We’re in an arms race”

Although DTU uses increasingly advanced technology to counter cyberattacks, staff and students play a crucial role in cyber and information security.

DTU prioritizes educating employees about cyber and information security from the moment they start. Most recently at Culture Day, DTU's mandatory introduction day for new employees, Cyber and Information Security Manager Anders Fosgerau gave a brief introduction to the subject. Photo: DTU
68 per cent of all security breaches involve a human element, including human error and actions.
Verizons Data Breach Investigations Report for 2024

Secure digital behaviour

One of those working with cyber defence is Mette Jensen, an information security consultant at the Department of IT Service at DTU. Much of her work involves helping DTU’s departments and units assess and manage the risks associated with data security. Because she handles confidential information in the form of risk assessments that expose vulnerabilities, she takes a range of precautions to protect data:

“I use a screen filter on both my laptop and PC, which ensures that only the person in front of the screen can see it—when viewed from the side, the screen is dark,” says Mette Jensen, adding:

“In addition, I try to keep my desk clean and tidy. I never leave confidential papers lying around, and every time I leave my desk, even if it’s only to get a cup of coffee, I lock the screen on my computer. Every single time,” says Mette Jensen.

Mette Jensen is convinced that measures such as these help prevent data theft and data breaches. She is well aware that her position calls for more security measures than most DTU employees and students, but she would still advise everyone to keep a close eye on what they are doing. Especially as 68 per cent of all security breaches involve a human element, including human error and actions, according to the Verizon 2024 Data Breach Investigations Report (DBIR).

“Often, if you take the time to just stop and look, you can usually spot when something isn’t right, whether it’s a suspicious website or a phishing email. It might be a tiny thing, for example a missing—or an extra—‘s’ in ‘https’ in an otherwise familiar sender email address. So, you really have to keep an eye out,” advises the information security consultant.

3 cyber security tips

  • Create strong passwords. Passwords should be a minimum of 12 characters, unique and should not be shared with others.
  • Only respond to secure messages. If in doubt, contact the sender by other means and confirm the request.
  • Protect confidential information - including personal data. By locking your computer when you leave it and possibly using a screen filter.

Read more on DTU Inside (DTU's intranet, accessible to staff and students).

Cyber security measures

  •  DTU is in the process of updating its cyber and information security policy to address the evolving threat landscape, incorporate DTU's experiences, and prepare DTU for new and increased security requirements as a result of the EU directive NIS2.

  • DTU has started sending security notifications by email to prevent others from using or abusing your DTU account. Help protect your account by responding immediately when you receive security notifications from DTU.

Contact

Anders Fosgerau

Anders Fosgerau Head of Office, Cyber and Informationssecurity Department of IT Service Phone: +45 45253878