Our growing membership is a national and international network of 2- and 4-year academic institutions and allied organizations that collaborate to expand cybersecurity for the public good.
Active Clinics
UC Berkeley
Citizen Clinic is a multidisciplinary, public-interest digital security clinic within the University of California, Berkeley’s Center for Long-Term Cybersecurity and School of Information. We grow our impact by sharing our institutional knowledge and serving as a model and collaborative resource for other universities that want to establish similar clinics.
Ann Cleaveland, Executive Director, Center for Long-Term Cybersecurity
Lisa Ho, Academic Director, Master of Information and Cybersecurity (MICS), School of Information
Tiffany Rad, Instructor, Citizen Clinic
Andrew Reddie, Cybersecurity Adjunct Professor, School of Information
Massachusetts Institute of Technology
At the MIT Cybersecurity Clinic, we work with cities and towns, particularly in New England, to help them reduce their vulnerability to cyberattacks. Our approach is to work directly with public agencies or elected officials to assess their vulnerabilities and suggest low-cost improvements they can make. We believe that having an assessment of the status-quo is the first step in figuring out a plan of action that will prevent unwanted incidents. Teams from the Clinic typically work with public agency clients for two months to gather and analyze relevant information. There is no cost for these services.
Professor Larry Susskind, Director, MIT Cybersecurity Clinic
Indiana University
Through generous grants from the Hewlett Foundation and the Indiana Economic Development Corporation, the IU Cybersecurity Clinic was created for the dual purposes of improving local and state cyber hygiene while training the next generation of cybersecurity leaders.
The Clinic is the first of its kind to strive to enhance the critical infrastructure security of under-resourced stakeholders across Indiana and the Midwest, focusing on local municipalities, counties, school corporations, and small businesses. The Clinic will leverage Indiana University’s strong tradition of cybersecurity leadership to provide a much-needed service to communities across the Hoosier state and beyond.
Scott Shackelford, Faculty Director and Founder
Rachel Dockery, Acting Executive Director
The University of Alabama
The University of Alabama cybersecurity clinic is a faculty-led, student-participatory organization that assists small to medium-sized organizations, especially non-profits, to defend themselves against cybersecurity attacks.
Allen Johnston, Professor, Information Systems, Statistics and Management Science
Greg Bott, Assistant Professor, Information Systems, Statistics and Management Science
Matthew Hudnall, Associate Director of the Institute of Business Analytics
University of Georgia
In 2018, the University of Georgia’s Public Service and Outreach division, in collaboration with academic units across the UGA campus, launched the CyberArch initiative. CyberArch faculty and staff travel to counties around Georgia to provide community-based outreach and cybersecurity training to locally based, community organizations, including city/county governments, small and medium sized businesses and nonprofits.
In January 2022, the CyberArch program established an experiential learning internship for graduate and undergraduate students beginning spring semester 2022. The CyberArch program will expand to include more student interns and reach more organizations across Georgia as we move into the future.
Mark Lupo, CyberArch Coordinator, UGA Carl Vinson Institute of Government
Rochester Institute of Technology
At RIT’s ESL Global Cybersecurity Institute, we educate and train cybersecurity professionals; develop new cybersecurity knowledge and technologies; and provide cybersecurity services for a wide range of partners. At our state-of-the-art Cyber Range, we simulate realistic cyber attack scenarios for training purposes and host collegiate cyber offense/defense competitions with global participation.
Our students, faculty and the professional staff help evaluate and audit critical systems/applications by providing services such as penetration testing, automated vulnerability analysis, product security audits to community partners as part of their coursework, apprenticeships and capstone projects. Our clients include municipalities, non-profits, schools, small and medium sized businesses as well as few local large corporations. These services help businesses and community organizations improve their cybersecurity awareness and defenses, while providing our students, faculty, and staff with continuous experience of solving real-world problems and opportunities to contextualize classroom lectures with contemporary practice from industry.
Ersin Uzun, Executive Director of ESL Global Cybersecurity Institute
Matthew Wright, Chair of Computing Security Department
Justin Pelletier, Director of the Cyber Range and Training Center
Bina Nusantara University (BINUS)
Bina Nusantara University (BINUS) is committed to developing the nation and building a global community through education and technology. BINUS aims to enrich every academic community member through interdisciplinary approaches in teaching and learning, research and development, community service, and self-development for continuous learning.
BINUS has a regular community service program introducing technology literacy, including cybersecurity, to the locally-based communities. BINUS lecturers and students travel to the country to provide cybersecurity training to community organizations, including city/county governments, small and medium-sized businesses, and nonprofits. BINUS has an integrated credit system to encourage students and lecturers to participate in the community service project.
Richard Win Putra, Information Systems Program, School of Information Systems
Yohannes Kurniawan, Information Systems Program, School of Information Systems
Yohan Mulyono, Cybersecurity Program, School of Computer Science
San Diego Cyber Clinic
The San Diego Cyber Clinic is a unique collaboration between nonprofit Cyber Center of Excellence (CCOE) and multiple academic institutions including San Diego State University, California State University San Marcos and National University – the only multi-institution clinic in the Consortium with a nonprofit industry partner leading the charge to source clients across the public and private sectors.
Through engagement of key industry, academic and government stakeholders in the San Diego region, including the City-led and U.S. DHS funded San Diego Regional Cyber Lab, our clinic aims to grow an inclusive cyber workforce and create a more secure digital community for all. San Diego Cyber Clinic will incorporate a capstone project model that will arm students with hands-on training and cyber career pathways while supporting small businesses and under-resourced organizations in San Diego.
Lisa Easterly, President & CEO, Cyber Center of Excellence (CCOE)
Lance Larson, Co-Director of Graduate Program in Homeland Security, San Diego State University
Teresa Macklin, Director of Cybersecurity M.S. Program, California State University San Marcos
Chris Simpson, Director of the Center for Cybersecurity, National University
Stillman College
Establishing strong cybersecurity frameworks and awareness programs are critical to an organization’s success regardless of size or industry. To support inclusivity Stillman’s Cybersecurity DEI Clinic will help small businesses and non-profits mitigate vulnerabilities through training and awareness programs.
Providing critical cybersecurity services not only helps secure organizations’ valuable data assets but provides students from diverse backgrounds experiential learning opportunities across multiple disciplines. Collaboration between the training center and academic department further supports the interdisciplinary approach.
Dr. Kevin Harris, Computational u0026amp; Information Sciences, School of Business
SUNY Plattsburgh Center for Cybersecurity and Technology
Opening in 2017, the Center for Cybersecurity and Technology (CCT), which goes by the nickname “Hackerspace,” is a collaboration between the management, information systems and analytics (MISA) department and computer science department faculty.
The center conducts an outreach program to local high schools to encourage students to pursue careers in cybersecurity by engaging them in projects with SUNY Plattsburgh students. In addition, the center will become an internet security resource for local businesses and nonprofit organizations. A think tank of sorts, the CCT will be a go-to place for START-UP NY businesses to engage with our students, host internships, and get information about the technology infrastructure available in the North Country.
And, the center hosts an annual cybersecurity conference which brings the best minds in cybersecurity and technology to the SUNY Plattsburgh campus. You don’t want to miss it.
If you work for a local business that wants to support our program, this is a great cause to help future “cyber warriors” that will protect our national infrastructure. If you are a nonprofit and you are worried about your computer network security and your data privacy, you can get free advice from the center.
Cristian Balan, CISSP, ACE, Coordinator, Center for Cybersecurity and Technology
Temple University
The Cybersecurity in Application, Research, and Education (CARE) Lab at Temple University offers a social science approach to cybersecurity and seeks to foster a multidisciplinary dialog among academia, industry, nonprofits, and government.
The CARE Lab works with local nonprofits that serve youth, elderly, and previously incarcerated individuals to offer free digital literacy and cyber hygiene training. The CARE Lab is committed to Diversity, Equity, and Inclusion (DEI) efforts and embraces the “cybersecurity is for everyone” mindset.
Aunshul Rege, Ph.D., Associate Professor, Department of Criminal Justice, Temple University
Columbia University School of International and Public Affairs
Columbia SIPA’s Capstone Workshops apply the practical skills and analytical knowledge learned at SIPA to a real-world issue. Students from the Masters of International Affairs and Masters of Public Administration degree programs are organized into small consulting teams (6-8 students per team) and assigned a substantive, policy-oriented project with an external client.
Jason Healey, Senior Research Scholar
University of Nevada, Las Vegas
UNLV Free Cyber Clinic was established to help small businesses mitigate the cybersecurity risks at no cost. It offers security auditing, security policy and business continuity plan development, security device or software configuration, and employee education, and cybersecurity recommendations. The service is performed at the customer site and a comprehensive assessment report is provided to the customers. The clinic recruits students with interdisciplinary backgrounds, trains them with both technical and non-technical skills, and sponsors industrial certifications.
Qualified students after the training are allowed to offer the services to customers and can build up valuable hands-on experience over multiple years while helping the community. The clinic partners with the UNLV SBDC (Small Business Development Center) and a number of cybersecurity firms around the country, which offers career opportunities to students and advanced services to selected customers.
Professor Yoohwan Kim, Director, UNLV Free Cyber Clinic
University of Texas at Austin
The UT Austin Applied Cybersecurity Community Clinic and two-course sequence is the fruit of discussions with the Department of Homeland Security Cybersecurity and Infrastructure Security Agency’s Cybersecurity Advisory Board, the City of Austin, and UT’s Robert Strauss Center for International Security and Law, all of which were interested in providing students with hands-on cybersecurity experience while also providing pro bono services to community organizations and small businesses that cannot afford such services on their own.
During the first semester course, students learn key cybersecurity defense concepts and skills, including vulnerability assessment, network configuration and security, access controls, authorization techniques, responding to a cyberattack, and penetration testing, as well as associated skills required to implement these abilities effectively in a real business or non-profit institutional setting. Students then deploy these skills—under supervision—in a real world setting in the second semester course, gaining invaluable practical experience. The clients, for their part, get the benefit of a substantially improved defensive posture.
Professor Francesca Lockhart, Cybersecurity Clinic Program Lead, Robert Strauss Center for International Security and Law at the University of Texas at Austin
University of Texas at San Antonio
Initially envisioned and piloted in 2004, the National Security Collaboration Center (NSCC), the Center for Infrastructure Assurance and Security (CIAS) at The University of Texas at San Antonio (UTSA) and the MITRE Corporation launched Project Xander in 2021. The project provided students with experience performing cybersecurity assessments for local nonprofits. The goal now is to add a cyber clinic portion to follow on with Project Xander activities.
The expansion will enable students outside of the classroom environment to provide assistance to local organizations needing advice and help with their cybersecurity programs. The clinic will host a help desk that local government, small business, and non-profit organizations can contact for assistance. These organizations have unique needs, as they typically have limited resources, but provide critical services to the whole community. In addition, the CIAS believes that cybersecurity clinics can be a catalyst for improving community cybersecurity under the Community Cyber Security Maturity Model (CCSMM).
Greg White, Director, Center for Infrastructure Assurance and Security, Department of Computer Science at The University of Texas at San Antonio
Allies
European Cyber Conflict Research Initiative
The European Cyber Conflict Research Initiative (ECCRI) promotes the interdisciplinary study of cyber conflict and statecraft in Europe and beyond. ECCRI exists to make rigorous, objective research on cyber conflict and statecraft accessible to policy-makers and the general public. ECCRI encourages and supports high-quality original research, as well as enabling researchers to communicate their findings to policy-makers and the general public.
Max Smeets, Director
Global Cyber Alliance
The Global Cyber Alliance (GCA) is an international nonprofit organization that focuses on making the Internet more secure for everyone: GCA’s vision is a secure, trustworthy Internet that enables social and economic progress for all. Unlike many nonprofits, we do this by building practical, measurable solutions and tools that are easy to use and working with partners to accelerate adoption around the world.
Our success in delivering the solutions we build at global scale is dependent on the relationships we build with organizations that have access at the regional and local level to the end users.
Gill Thomas, Director of Engagement, Capacity & Resilience Program
R Street
The R Street Institute is a nonprofit, nonpartisan public policy research organization (“think tank”). Our mission is to engage in policy research and outreach to promote free markets and limited, effective government. In addition to our D.C. headquarters, we have offices in Georgia, Texas, Ohio, Massachusetts and California.
We work extensively on both state and national policy, focusing on issues that other groups tend to neglect. Our specialty is tackling issues that are complex, but do not necessarily grab major headlines. These are the areas where we think we can have a real impact. We believe free markets work better than the alternatives. At the same time, we recognize that the legislative process calls for practical responses to current problems. To that end, our motto is: “Free markets. Real solutions.”
Brandon Pugh, Director, Cybersecurity and Emerging Threats