Office of the Chief Information Security Officer

Best Practices


October 8, 2019

Director of IoT Risk Mitigation Strategy

Chuck Benson has recently joined the Office of the CISO as Director of IoT Risk Mitigation Strategy. Chuck has been at UW for over 15 years with experience in facilities IT, healthcare IT, and central IT. He has testified before the US-China Economic & Security Review Commission on IoT risk mitigation for institutions and cities,…


September 30, 2019

Top 5 Tips

Welcome to the 2019-2020 academic year! See our top 5 tips to secure your personal and UW institutional data and information. View Top 5 Tips More Articles More Infographics


May 23, 2019

Mitigating Cross-site Scripting (XSS) Vulnerabilities

A cross-site scripting (XSS) vulnerability was recently discovered on your site. Why should you care and what should you do? First, what exactly is cross-site scripting (XSS)? XSS is an exploit that provides an attacker a way to execute malicious JavaScript in a victim’s browser. In other words, if your site has an XSS vulnerability,…


Mitigating SQL Injection (SQLi) Vulnerabilities

A(n) SQL injection vulnerability was recently discovered on your site. Why should you care and what should you do? First, what exactly is SQL injection? SQL injection is a form of attack in which malicious SQL statements are inserted into a web page form field and executed. Web pages/applications vulnerable to SQL injection essentially place…



Next page