The Business of Cybersecurity
September 19, 2024
If you are surprised to learn that E. J. Ourso College of Business students were part
of the team helping small businesses through the LSU Cybersecurity Clinic, you are
not alone.
Many see cybersecurity as strictly a technological problem, but E. J. Ourso College
faculty and students are challenging that assertion, and with good reason. According
to 2022 IBM statistics, the average data breach in the US costs $9.44 million; the
same report estimates that a ransomware attack costs $4.54 million, while destructive
attacks cost an average of $5.12 million. These figures prove that cybersecurity is
indeed a business concern.
"Business students are essential in bridging the gap between technical findings and business implications in the LSU Cybersecurity Clinic and the professional world," said Alissa Lankford (2023 BS MGMT, 2024 MBA). "We conducted cyber risk assessments to translate technical vulnerabilities into business risks and strategies. This dual perspective ensured that our solutions are technically robust and aligned with business goals."
How did Lankford and a team of classmates end up helping small businesses through the LSU Cybersecurity Clinic?
LSU Center for Internal Auditing & Cybersecurity Risk Management
Recently, the LSU Center for Internal Auditing has emphasized cybersecurity by enhancing its curriculum to help students identify cyber risk concerns. As a result, the program changed its name to the LSU Center for Internal Auditing & Cybersecurity Risk Management (LSUCIA&CRM) last year.
LSUCIA&CRM has been invited to use its expertise to support the LSU Cybersecurity Clinic, a collaborative effort between the university and the Louisiana Small Business Development Center, funded by the NSA. In addition to providing free consulting services and seminars to small businesses, the clinic offers business and engineering students opportunities to enhance their cybersecurity education, gain experience, and earn professional certifications.
"As part of the risk assessment team, we worked on various projects to assist small businesses across Louisiana," said Katherine Bearden (2023 BS MGMT, 2024 MBA). " Our primary focus was protecting these organizations from data breaches, intellectual property theft, financial losses, and safeguarding their reputations."
The experience was eye-opening for the team, who quickly realized that many small businesses did not prioritize cybersecurity and often lacked basic policies to protect sensitive information from attacks like phishing or ransomware. Through free consultations and seminars, the team emphasized the need for security measures, including software updates, strong passwords, multi-factor authentication, security awareness training, and data backups.
Several team members report that participation in the clinic led to job offers. Another benefit? The satisfaction of knowing their work contributed to small business success.
"It's a rewarding feeling, knowing that my expertise made a difference in enhancing their security posture and safeguarding their assets," said Beau Taranto (2023 BS MGMT, 2024 MBA).
LSUCIA&CRM's curriculum updates and involvement with the cybersecurity clinic are just part of the strategy. By introducing a cyber risk concentration and an online graduate certificate, the Ourso College will meet emergent needs by producing cybersecurity leaders essential to protecting financial assets and vital resources.
Cyber Risk Concentration
Undergraduate students can learn to protect organizations' digital assets through a concentration in cyber risk, part of the newly renamed BS Information Systems & Analytics, formerly BS Information Systems & Decision Sciences. Housed in the Ourso College’s Stephenson Department of Entrepreneurship and Information Systems, the concentration provides in-demand skills like security management, risk assessment, encryption, and application security.
While the degree name and concentration are new, the curriculum has already proven to be a winner. Daniel Lichowid Jr. (2024 BS ISDS) developed the skills and business acumen needed to earn third place in the 2024 Deloitte Risk & Financial Advisory Cyber Threat Competition through these courses.
The national competition, which drew 1,500 applicants from a variety of majors, saw Lichowid emerge in the top 5% of all participants. He attributed his success to courses that addressed cybersecurity holistically by instilling technical skills and the knowledge to apply them to business settings.
"With cyber threats, a lot goes on behind the scenes in a business sense," said Lichowid. "These threats have big impacts."
Graduate Certificate in Cybersecurity Risk Management
Offered through the Ourso College and supported by LSU Online, the Graduate Certificate
in Cybersecurity Risk Management covers information security, cybersecurity frameworks,
risk assessments, and IT auditing topics. The certificate opens the door to lucrative
career paths, including information security managers or engineers, cybersecurity
analysts, and internal auditors.
Through this robust slate of programs, the Ourso College prepares students to be integral in providing cybersecurity solutions.
"Cybercrimes and vulnerabilities impact organizations of all sizes," said Jared Llorens, dean of the Ourso College. "We have an obligation to be part of the solution. The college is excited to bring a unique perspective and skillset to support the university's defense priority and join the team protecting our economy and infrastructure."
This article was originally published in the fall 2024 issue of the LSU Alumni Magazine.