Cyber Security @ Sinclair

Your one-stop solution for all IT-related needs

Cyber Security @ Sinclair

Welcome to Sinclair's Cyber Security Hub; your one-stop resource for staying safe online. Whether you're a student accessing Wi-Fi, a faculty member using shared drives, or a staff member managing sensitive data, cybersecurity is everyone's responsibility. Below are essential best practices, tools, and guidelines to help protect your information and our campus systems.

Top 10 Cyber Security Tips

1. Use Strong Passwords

Create long, unique passwords with a mix of characters. Avoid personal details and common words.

2. Don’t Reuse Passwords

Use different passwords for different accounts to limit exposure if one gets compromised.

3. Use a Password Manager

Tools like LastPass or Bitwarden help securely store and generate complex passwords.

4. Enable Multi-Factor Authentication (MFA)

Always opt into MFA where available, including for your Sinclair login.

5. Beware of Phishing

Don’t click on suspicious links or attachments. Always verify the sender before responding.

6. Avoid Saving Passwords in Browsers

Browsers can be vulnerable. Use a dedicated password manager instead.

7. Update Devices and Software Regularly

Install updates promptly to patch security vulnerabilities.

8. Use Secure Wi-Fi

When on campus, connect to SCC-Wireless using your Sinclair credentials.

9. Back Up Your Data

Store important files in OneDrive or another secure cloud service.

10. Lock Your Screen

Always lock your device when stepping away, especially in shared environments.

Ransom note that says: We have your data."

Spotting and Reporting Phishing

  • Look for red flags: generic greetings, urgent threats, unknown attachments.
  • Emails from Sinclair will always come from a @sinclair.edu address.
  • Report suspicious emails by contacting the HelpDesk at (937) 512-4357.

What Not to Do

  • Don’t investigate suspicious emails or links on your own. Trying to open or explore risky content can put you and Sinclair’s systems at greater risk. Report it immediately to the HelpDesk.
  • Don’t ignore warnings or system updates. These protect you from known threats.
  • Don’t share your login credentials with anyone—even coworkers or classmates. Each user is responsible for actions under their own account.

Sinclair Policies

These policies outline your responsibilities and rights when using Sinclair technology and networks.

Please remember:

  • Sinclair is a public institution. Your activity on Sinclair systems is subject to public records laws and institutional monitoring.
  • Peer-to-peer file sharing is prohibited.
  • Only use Sinclair IT systems for lawful, academic, or college-related purposes.

Smart Cyber Habits for Personal Devices & Online Presence

Security tips for staying safe—at work and at home.

1. Protecting Personal Devices

While Sinclair doesn’t require specific security settings on personal devices, here are a few suggestions to reduce risk:

  • Enable device encryption on phones, tablets, and laptops to protect data if lost or stolen.
  • Keep operating systems and apps up to date to patch known vulnerabilities.
  • Use antivirus or anti-malware software from a trusted vendor.
  • Avoid using public Wi-Fi without a VPN, especially when checking email or accessing cloud services.

2. Using Strong, Unique Passwords

  • For Sinclair accounts, follow the Password Requirements.
  • Avoid using the same password across personal and work accounts.
  • Use a reputable password manager to store complex passwords securely.
  • Never share passwords or write them down near your workstation.

3. Safe Social Media Practices

  • Limit what you share publicly—especially your job title, contact information, or travel plans.
  • Watch out for quizzes, games, and third-party apps that ask for unusual permissions.
  • Be cautious about clicking links in direct messages, even if they appear to come from friends or colleagues.

4. Working Remotely or On the Go

  • Use Sinclair’s VPN (when possible) to securely connect to internal systems.
  • Lock your screen when stepping away, even at home.
  • Avoid downloading sensitive materials to personal devices unless you're confident they’re secure.

5. Recognizing Phishing & Scams

  • Be suspicious of urgent or emotional appeals, especially if they ask for personal information or login credentials.
  • Double-check the sender's email address—spoofed domains often look legitimate at first glance.
  • When in doubt, report suspicious emails to the HelpDesk.

Annual Cyber Security Awareness Training for Employees

At Sinclair, protecting student, employee, and institutional data is a shared responsibility. To support a secure campus environment, all employees are required to complete Cyber Security Awareness Training:

  • Within two weeks of hire
  • Annually thereafter

Why It’s Required

Cybersecurity awareness training is a legal and institutional requirement based on:

  • FERPA (Family Educational Rights and Privacy Act) – Ensures protection of student records.
  • GLBA (Gramm-Leach-Bliley Act) – Requires financial data safeguards and employee training.
  • HIPAA (Health Insurance Portability and Accountability Act) – Applies to health services data.
  • Ohio Cybersecurity Standards – Promotes awareness across public institutions.
  • NIST Guidelines – Community colleges are encouraged to align with the NIST Cybersecurity Framework, which recommends employee education to mitigate risk from human error.
Failure to comply can result in disciplinary action and increased risk to Sinclair's systems.
 

What the Training Covers

Training modules are completed in eLearn and take approximately 45 minutes to complete. All videos include captions and/or transcripts and support multiple languages. Most modules conclude with a short quiz (3–5 questions).

Key Topics

  • Phishing & Email Safety – Recognize and avoid suspicious links, fake emails, and account scams.
  • Data Security – Understand how to properly handle sensitive data and avoid public storage platforms.
  • Passwords – Tips for creating secure passwords; introduction to password managers.
  • Malware – Recognizing and preventing software-based attacks.
  • Targeted Attacks – How spear phishing and tailored scams work.

How to Complete the Training

New employees receive an email with a direct training link and due date. Current employees will receive an annual reminder with the following schedule:

  • Initial Email – Sent 4 weeks before deadline.
  • Two-Week Reminder – Friendly follow-up.
  • One-Week Alert (CC Supervisor) – Urgent notice.
  • Deadline Day Manager Notice – Final reminder.

Completion Instructions

  1. Access your eLearn course from the link in your email.
  2. Complete all video modules and quizzes.
  3. Submit the final acknowledgment form as directed.

If you encounter issues accessing the course, contact the IT Help Desk at 937-512-HELP (4357).

Smart Habits for Remote Work:

1. Protect Your Personal Devices

  • Enable device encryption on phones, tablets, and laptops to protect data if lost or stolen.
  • Keep operating systems and apps up to date to patch known vulnerabilities.
  • Use antivirus or anti-malware software from a trusted vendor.
  • Avoid using public Wi-Fi without a VPN, especially when checking your Sinclair email or accessing cloud services such as OneDrive.

2. Protect Sinclair's Network

  • Use Sinclair's Virtual Private Network (VPN) GlobalProtect whenever possible to securely connect to our internal systems.
  • Always lock your screen when stepping away. 
  • Avoid downloading sensitive materials to personal devices unless you're confident the device is secure.