Our member organizations

The Franklin Cummings Tech Cybersecurity Clinic pairs small groups of cybersecurity students with experienced practitioners to assess the security postures of small- and medium-sized companies and nonprofits.

The goals of the clinic are twofold: (1) To promote diversity in the cyber workforce by providing real-world experience to underrepresented students, under the mentorship of experienced practitioners, and (2) To promote proven cybersecurity practices among BIPOC-owned small and medium-sized businesses, and among nonprofits that serve low-income and BIPOC youth.

Bina Nusantara University (BINUS) is committed to developing the nation and building a global community through education and technology. BINUS aims to enrich every academic community member through interdisciplinary approaches in teaching and learning, research and development, community service, and self-development for continuous learning.

BINUS has a regular community service program introducing technology literacy, including cybersecurity, to the locally-based communities. BINUS lecturers and students travel to the country to provide cybersecurity training to community organizations, including city/county governments, small and medium-sized businesses, and nonprofits. BINUS has an integrated credit system to encourage students and lecturers to participate in the community service project.

Richard Win Putra, Information Systems Program, School of Information Systems
Yohannes Kurniawan, Information Systems Program, School of Information Systems
Yohan Mulyono, Cybersecurity Program, School of Computer Science

The Chihlee University of Technology Cybersecurity Clinic was established to enhance cybersecurity awareness among Taiwan’s small and medium-sized enterprises (SMEs) and non-profit organizations. Through risk assessments, vulnerability detection, and other cybersecurity tools, we provide organizations with information security reports and recommendations for improvement.

The Department of Information Management at Chihlee University of Technology has a dedicated cybersecurity education team and has actively promoted hands-on cybersecurity training and network attack and defense education in recent years. In particular, we encourage students to obtain international cybersecurity certifications. Over the past two years, more than 20 students have earned certifications in ethical hacking, and several graduates have continued their studies by pursuing master’s degrees in cybersecurity. We are members of the research team at the Taiwan Academic Cybersecurity Center (TACC), established by the National Science and Technology Council as a national cybersecurity technology research center. Our future research focuses on developing a Linux-based open-source Security Information and Event Management (SIEM) platform that integrates AI-driven automatic detection capabilities with AI agents.

Wei-Hung Chen, Ph.D., Assistant Professor, Department of Information Management, Chihlee University of Technology

Columbia SIPA’s Capstone Workshops apply the practical skills and analytical knowledge learned at SIPA to a real-world issue. Students from the Masters of International Affairs and Masters of Public Administration degree programs are organized into small consulting teams (6-8 students per team) and assigned a substantive, policy-oriented project with an external client.

Jason Healey, Senior Research Scholar

The Dakota State University Cybersecurity Clinic enhances cybersecurity for small businesses, local, state, and tribal governments, and critical infrastructure partners that are at heightened cybersecurity risks. The DSU Cybersecurity Clinic identifies vulnerabilities and recommends actionable, low-cost improvements.

In addition to providing assessments and implementing strategies to improve security, the clinic also focuses on education, offering training sessions to teach best practices and raise awareness about cybersecurity threats. This approach ensures that organizations not only strengthen their defenses but also build lasting knowledge to maintain and advance their security measures. All services and educational resources are offered at no cost, supporting a safer digital environment for various sectors and local communities.

The Department of Information Engineering and Computer Science at Feng Chia University not only provides rigorous academic training but also frequently collaborates with the on-campus hacker club to organize a “Cybersecurity Week.” This event aims to promote cybersecurity awareness and enhance the ability of campus faculty and students to guard against cybersecurity risks. The event employs diverse approaches, including workshops, cybersecurity lectures, on-campus booth activities for cybersecurity advocacy, Capture The Flag (CTF) online competitions, and cybersecurity education and training. These activities enable both faculty and students to gain a deeper understanding of cybersecurity knowledge.

The Feng Chia University Cybersecurity Clinic was established to assist local small and medium enterprises (SMEs) in central Taiwan in enhancing their cybersecurity defenses, with a particular focus on strengthening employees’ cybersecurity awareness. Central Taiwan is home to a world-renowned precision machinery industry, the clinic tailors its services to address the unique cybersecurity challenges faced by businesses in this internationally significant sector. Its offerings include conducting social engineering drills, providing cybersecurity awareness training, and delivering comprehensive cybersecurity risk reports. By doing so, the clinic contributes to safeguarding not only individual businesses but also the region’s industrial competitiveness.

Jung-San Lee, Ph.D., Distinguished Professor, Department of Information Engineering and Computer Science, Feng Chia University

The Technology Impact Lab is an innovative multidisciplinary course offered at Georgetown University. In the lab, Georgetown graduate and law students work together in teams on high-impact projects that combine tech and cyber policy expertise and applied technical skills in order to investigate real-world issues like data privacy or election security. Students in the course work alongside partners such as nonprofit organizations and government agencies whose needs and interests help shape the students’ final work product.

Paul Ohm, Professor of Law, Georgetown University Law Center
Meg Leta Jones, J.D., Ph.D., Provost’s Distinguished Associate Professor, Communication, Culture & Technology, Georgetown University
Jon Brescia, Senior Associate, Institute for Technology Law & Policy, Manager, Technology Impact Lab

Through generous grants from the Hewlett Foundation and the Indiana Economic Development Corporation, the IU Cybersecurity Clinic was created for the dual purposes of improving local and state cyber hygiene while training the next generation of cybersecurity leaders.

The Clinic is the first of its kind to strive to enhance the critical infrastructure security of under-resourced stakeholders across Indiana and the Midwest, focusing on local municipalities, counties, school corporations, and small businesses. The Clinic will leverage Indiana University’s strong tradition of cybersecurity leadership to provide a much-needed service to communities across the Hoosier state and beyond.

Scott Shackelford, Faculty Director and Founder
Rachel Dockery, Acting Executive Director

The Kean University Center for Cybersecurity, in collaboration with the John S. Watson Institute for Urban Policy and Research, BCT Partners, and Covenant Business Concepts, is a key component of the New Jersey Regional Innovation Cluster (NJRIC). This initiative, funded by the U.S. Small Business Administration, aims to bolster cybersecurity resilience among small businesses in New Jersey and New York. The center provides free cybersecurity and business resilience risk assessments, offering crucial insights into potential vulnerabilities. These assessments, conducted by Kean University experts, serve as a foundation for subsequent mentoring and guidance, including exploring the beneficial applications of Generative AI.

Following the initial assessment phase, the Cybersecurity Clinic facilitates the translation of findings into actionable solutions. Participating businesses, with annual budgets under $500,000, receive tailored recommendations and are connected with service providers capable of implementing necessary cybersecurity defenses. This comprehensive approach ensures that small businesses not only understand their risks but also gain the practical support needed to effectively mitigate them, fostering a more secure and resilient business environment. Interested businesses can apply through the provided application survey, with approved participants then completing a pre-assessment survey, all under the direction of Prof. Stan Mierzwa, Ph.D., Director of the Center for Cybersecurity.

Professor Stan Mierzwa, Ph.D., Director and Lecturer

The LSU Cybersecurity Clinic is a pioneer NSA-funded initiative positioned at the intersection of community service and cybersecurity education. Operated in partnership with the Louisiana Small Business Development Center (LSBDC), the Clinic serves as a critical resource for local small businesses in Louisiana that require cybersecurity assistance but lack the necessary resources. Simultaneously, it offers a rigorous, practical learning environment for the next generation of cybersecurity professionals.

Aisha Ali-Gombe, Associate Professor of Computer Science and Engineering

At the MIT Cybersecurity Clinic, we work with cities and towns, particularly in New England, to help them reduce their vulnerability to cyberattacks. Our approach is to work directly with public agencies or elected officials to assess their vulnerabilities and suggest low-cost improvements they can make. We believe that having an assessment of the status-quo is the first step in figuring out a plan of action that will prevent unwanted incidents. Teams from the Clinic typically work with public agency clients for two months to gather and analyze relevant information. There is no cost for these services.

Professor Larry Susskind, Director, MIT Cybersecurity Clinic

Metro State University’s free cybersecurity clinic strives to help small businesses, nonprofits, schools, and government organizations in Minnesota strengthen their digital defenses. Through this initiative, upper-division cybersecurity students, trained and certified in industry standards, conduct thorough vulnerability assessments and provide actionable recommendations to client organizations. This hands-on approach not only benefits under-resourced organizations but also prepares students for real-world cybersecurity challenges. By working proactively with these organizations, the clinic helps protect their data and infrastructure from cyber threats.

Faisal Kaleem, Professor, Department of Computer Science and Cybersecurity; Graduate Director, Cyber Operations Program, Executive Director, MN Cyber

The Miami University Cybersecurity Clinic improves the cyber resilience of community organizations, including local governments and nonprofits. We train students to work in faculty-led teams that help community organizations build the capabilities they need to defend themselves against cyber threats, including malicious hackers and organized cybercriminal groups. We perform nontechnical and technical security assessments, review security policies and procedures, and recommend low-cost improvements to an organization’s cybersecurity posture. We can also help to implement recommended improvements.

James Walden, Director of the Center for Cybersecurity

The National Cheng Kung University Cybersecurity Clinic was established to enhance non-profit organizations’ cybersecurity resilience by offering risk mitigation and vulnerability assessments service.

The NCKU Computer and Network Center provides the computer and network resources required to conduct teaching, research, and administrative activities in NCKU and assists all NCKU units in developing school affairs information systems, promoting information security, and protecting personal data. The center provides services pertinent to campus optical fiber backbone networks, wireless networks, dormitory networks, emails, web platforms, cloud computing, AI computing platforms, e-school administration, digital learning platforms, and campus-authorized software.

Narn-Yih Lee, Ph.D., Professor, Computer and Network Center,
National Cheng Kung University

The Information Security and Blockchain Applications Lab at National Chung Hsing University is dedicated to advancing cybersecurity and blockchain technology, with a strong focus on serving the unique needs of industries in central Taiwan. Our research encompasses IoT security, AI malware detection, and real-time system attack and defense for smart factories. We also explore blockchain applications in smart contracts, FinTech, and IoT.

Specifically, we partner with the precision machinery industry, a cornerstone of central Taiwan’s economy, to address their unique cybersecurity challenges. Additionally, we collaborate with local NGOs and companies providing long-term care services, enhancing their data protection and privacy measures to safeguard sensitive patient information. Through these partnerships, we aim to strengthen the cybersecurity resilience of both the manufacturing sector and the non-profit sector in our region, contributing to their competitiveness and the well-being of the community.

Iuon-Chang Lin, Distinguished Professor, Department of Management Information Systems, National Chung Hsing University

Established in 2025, the Cybersecurity Clinic at National Taitung University, Taiwan operates under the Department of Computer Science and Information Technology within the College of Science and Engineering. As a long-standing academic partner of cybersecurity advocacy organizations such as EC-Council, CompTIA, and ISACA, we are committed not only to delivering high-quality cybersecurity education but also to fostering a more secure information environment.

In collaboration with local communities, we train students to assist small and medium-sized businesses (SMBs) and non-profit organizations (NPOs) in enhancing their cybersecurity posture. Our approach is grounded in the OSINT Framework and open-source software as the core technical foundation, complemented by the governance and audit principles of the NIST Cybersecurity Framework and ISO 27001. Through this methodology, we assess the current vulnerabilities and threats faced by target organizations.
Based on a comprehensive evaluation of cost-effectiveness and risk significance, we provide tailored recommendations for risk mitigation. These measures are further integrated with educational outreach efforts to support organizations in building digital resilience and secure environments.

Reen-Cheng Wang, Ph.D., Assistant Professor, Department of Computer Science and Information Technology, National Taitung University

The Department of Computer Science and Information Engineering at National Taiwan University has consistently demonstrated a proactive approach to research in the field of information security, excelling in both academic and practical applications. Faculty members have received prestigious academic honors and awards both domestically and internationally, while research teams frequently earn Best Paper Awards at international conferences.

The National Taiwan University Cybersecurity Clinic was established to enhance the cybersecurity resilience of non-profit organizations located in Northern Taiwan. The clinic offers risk mitigation and vulnerability assessment services. It recruits students from diverse backgrounds (e.g., CS, IS, communication, social science) to assist organizations at risk in defending themselves against cyber-attacks.

Hsu-Chun Hsiao, Ph.D., Associate Professor, Department of Computer Science and Information Engineering, National Taiwan University

The Department of Computer Science at National Yang Ming Chiao Tung University boasts a strong faculty and tradition in cybersecurity research. The department covers various aspects including cryptography theory, system security, network security, and ethical hacking techniques, with dedicated faculty members and numerous talented students engaged in related research and activities. In addition to offering a general cybersecurity program, the department provides an in-service program specifically designed for voluntary military personnel, focusing on national defense cybersecurity management training. The department actively participates in the Taiwan Information Security Center (TWISC), a cross-institutional initiative aimed at advancing the cybersecurity field.

The National Yang Ming Chiao Tung University (NYCU) Cybersecurity Clinic was primarily established to enhance the cybersecurity resilience of non-profit organizations in Northern Taiwan, leveraging the university’s renowned strengths in electrical engineering and computer science. While focusing on non-profits, the clinic’s strategic location near the Hsinchu Science Park—a global hub for semiconductor innovation and home to some of the world’s leading chip manufacturers—uniquely positions it to extend its services to the diverse ecosystem of small and medium enterprises (SMEs) that support this critical industry. The clinic embodies NYCU’s spirit of innovation and entrepreneurship, leveraging the university’s vibrant research atmosphere and strong industry connections to develop cutting-edge cybersecurity solutions.

Chun-Ying Huang, Ph.D., Director of Institute of Network Engineering / Professor, Department of Computer Science and Information Engineering, National Yang Ming Chiao Tung University

 In 2024, the Northeastern State University in Oklahoma’s Cybersecurity Program, in collaboration with academic units across the NSUOK campus, launched the Northeastern State University Cybersecurity Clinic. This initiative will benefit student interns, faculty, and staff who travel to communities throughout Oklahoma to conduct cybersecurity risk reviews of partner organizations and provide community-based outreach and cybersecurity training to local community organizations. These include city/county governments, small and medium-sized businesses, nonprofits, and tribal entities.

Additionally, this initiative is building and enhancing a cybersecurity lab for the student interns to learn the importance of how to work remotely, as is the standard practice in the cyber world.

The Old Dominion University, Coastal Virginia Center for Center Innovation (COVA CCI) Cybersecurity Clinic provides pro bono Cybersecurity-as-a-Service to small businesses, non-profits, local government offices/agencies/boards, and other organizations using selected students from the ODU to assess the organization’s cybersecurity preparedness and risk posture.

The objective of this clinic is to provide cybersecurity awareness and services (education, risk management posture, etc.) to client organizations within Hampton Roads while providing an experiential learning opportunity for the students participating in the program as cybersecurity interns/consultants. Specifically, this clinic targets those client organizations that do not have a strong cyber presence and who can find value in gaining knowledge of cybersecurity through cybersecurity awareness and services.

This is a 15-week program that will be offered during both the fall and spring academic semesters. For more information on our program, you can watch a short video on what Cyber Clinic is and what we are doing with our program by visiting our website. https://covacci.org/cyber-as-a-service/cyber-clinic/cyber-clinic-business-information/

Teresa Duvall, Cyber Clinic Instructor
John Costanzo, Cyber Clinic Program Manager

At RIT’s ESL Global Cybersecurity Institute, we educate and train cybersecurity professionals; develop new cybersecurity knowledge and technologies; and provide cybersecurity services for a wide range of partners. At our state-of-the-art Cyber Range, we simulate realistic cyber attack scenarios for training purposes and host collegiate cyber offense/defense competitions with global participation.

Our students, faculty and the professional staff help evaluate and audit critical systems/applications by providing services such as penetration testing, automated vulnerability analysis, product security audits to community partners as part of their coursework, apprenticeships and capstone projects. Our clients include municipalities, non-profits, schools, small and medium sized businesses as well as few local large corporations. These services help businesses and community organizations improve their cybersecurity awareness and defenses, while providing our students, faculty, and staff with continuous experience of solving real-world problems and opportunities to contextualize classroom lectures with contemporary practice from industry.

Ersin Uzun, Executive Director of ESL Global Cybersecurity Institute
Matthew Wright, Chair of Computing Security Department
Justin Pelletier, Director of the Cyber Range and Training Center

The San Diego Cyber Clinic is a unique collaboration between Cyber Center of Excellence (CCOE) California State University San Marcos, National University and San Diego State University. The only multi-institution clinic in the Consortium of Cybersecurity Clinics with a nonprofit industry partner leading the charge is training students to service clients across the public and private sectors in the San Diego region.

Through engagement of key industry, academic, and government stakeholders, including the City-led and U.S. DHS funded San Diego Regional Cyber Lab, the San Diego Cyber Clinic aims to grow an inclusive cyber workforce, increase digital security for all and serve as a model for regional collaboratives. 

Lisa Easterly, President & CEO, Cyber Center of Excellence (CCOE)
Lance Larson, Co-Director of Graduate Program in Homeland Security, San Diego State University
Teresa Macklin, Director of Cybersecurity M.S. Program, California State University San Marcos
Chris Simpson, Director of the Center for Cybersecurity, National University

The Spelman SPEAR will prepare the next generation of cyber, security, and policy experts by providing faculty-led instruction with a capstone project that will provide students with real-world experiences, opportunities to obtain various cybersecurity certifications, and access to employment opportunities. Students will offer complimentary services to critical public infrastructure and community organizations.

These client engagements will become “use cases” that inform best practices and enable more comprehensive services across those domains. Clients will receive the following Spelman SPEAR of services:

• Security Plan – development of a comprehensive plan to define protections needed and identify the goals, policies, and mechanisms to deliver them
• Education – training for students and clients
• Assessment – compliance based on specific industry standards
• Remediation – interpretation of assessments

The MSME Cybersecurity Clinic is a key initiative under the Cybersecurity Clinics Initiative at SLIIT, supported by a grant from Google LLC through The Asia Foundation’s APAC Cybersecurity Fund Program. This program is designed to help Micro, Small, and Medium Enterprises (MSMEs) in Sri Lanka strengthen their cybersecurity posture and reduce exposure to cyber threats.

As part of this initiative, third-year cybersecurity undergraduates at SLIIT conduct structured risk assessments for participating MSMEs, identifying vulnerabilities and providing tailored recommendations to improve security. Under the guidance of faculty and industry mentors, students apply industry best practices to help businesses implement cost-effective cybersecurity measures.

By participating in this free cybersecurity support program, MSMEs gain valuable insights into their cyber risks while contributing to student learning and community resilience.

Kavinga Yapa Abeywardena, Senior Lecturer

Establishing strong cybersecurity frameworks and awareness programs are critical to an organization’s success regardless of size or industry. To support inclusivity Stillman’s Cybersecurity DEI Clinic will help small businesses and non-profits mitigate vulnerabilities through training and awareness programs.

Providing critical cybersecurity services not only helps secure organizations’ valuable data assets but provides students from diverse backgrounds experiential learning opportunities across multiple disciplines. Collaboration between the training center and academic department further supports the interdisciplinary approach.

Dr. Kevin Harris, Computational u0026amp; Information Sciences, School of Business

Opening in 2017, the Center for Cybersecurity and Technology (CCT), which goes by the nickname “Hackerspace,” is a collaboration between the management, information systems and analytics (MISA) department and computer science department faculty.

The center hosts cybersecurity projects and research to offer students hands-on opportunities to practice skills learned in the classroom. Students from the cybersecurity track in MIS and from computer security majors intern at the center.

The center conducts an outreach program to local high schools to encourage students to pursue careers in cybersecurity by engaging them in projects with SUNY Plattsburgh students. In addition, the center will become an internet security resource for local businesses and nonprofit organizations. A think tank of sorts, the CCT will be a go-to place for START-UP NY businesses to engage with our students, host internships, and get information about the technology infrastructure available in the North Country.

And, the center hosts an annual cybersecurity conference which brings the best minds in cybersecurity and technology to the SUNY Plattsburgh campus. You don’t want to miss it.

If you work for a local business that wants to support our program, this is a great cause to help future “cyber warriors” that will protect our national infrastructure. If you are a nonprofit and you are worried about your computer network security and your data privacy, you can get free advice from the center.

Cristian Balan, CISSP, ACE, Coordinator, Center for Cybersecurity and Technology

The Cybersecurity in Application, Research, and Education (CARE) Lab at Temple University offers a social science approach to cybersecurity and seeks to foster a multidisciplinary dialog among academia, industry, nonprofits, and government.

The CARE Lab works with local nonprofits that serve youth, elderly, and previously incarcerated individuals to offer free digital literacy and cyber hygiene training. The CARE Lab is committed to Diversity, Equity, and Inclusion (DEI) efforts and embraces the “cybersecurity is for everyone” mindset.

Aunshul Rege, Ph.D., Associate Professor, Department of Criminal Justice, Temple University

One of the first of its kind in the country, the Catalyst Cyber Clinic provides free cybersecurity services to charities, non-profits, and social impact organizations and equips Catalyst cyber program learners and graduates with vital hands-on experience.

Katie Gibson, Catalyst Clinic Director

The Tufts University Cybersecurity Clinic offers a wide range of Cybersecurity services to the Medford, Somerville, Cambridge, and Greater Boston communities pro bono.  Services include business continuity planning, risk mitigation, source code review, vulnerability assessments, and penetration testing.

This initiative, in partnership with the School of Engineering, Tisch College of Civic Life, and The Fletcher School, builds on the interdisciplinary expertise at Tufts, and aims to build a diverse and inclusive cybersecurity workforce in the strong tradition of teaching, research, and public service at Tufts.

Ming Chow, Director

The University of Alabama cybersecurity clinic is a faculty-led, student-participatory organization that assists small to medium-sized organizations, especially non-profits, to defend themselves against cybersecurity attacks.

Allen Johnston, Professor, Information Systems, Statistics and Management Science
Greg Bott, Assistant Professor, Information Systems, Statistics and Management Science
Matthew Hudnall, Associate Director of the Institute of Business Analytics

The UArizona Cybersecurity Clinic’s vision is to secure and empower K-12 institutions, non-profits, small businesses, and government agencies by providing risk and vulnerability assessments. Its mission is to create unique and impactful student experiential learning opportunities to conduct these assessments. This approach will cultivate the next generation of cybersecurity leaders while providing a critical service to these organizations.

The UArizona Cybersecurity Clinic vision extends beyond providing risk and vulnerability assessments. It is committed to integrating college student experiential learning into our approach. By offering real-world projects, internships, and independent studies, the clinic will expose students to the practical challenges of cybersecurity, develop technical competencies, and build confidence in delivering reports in written and oral format to organizational leadership. These experiences will ensure that students have the skills and insights to thrive in the dynamic field of cybersecurity.

The UC Berkeley Cybersecurity Clinic, established in 2018, is a public-interest digital security and privacy clinic within the University of California, Berkeley’s Center for Long-Term Cybersecurity and School of Information. We support the capacity of organizations, susceptible to ideologically motivated threats, in defending themselves against online threats. We train interdisciplinary teams of students to assess threats to targeted organizations, recommend risk-appropriate mitigations, and work collaboratively with clients to implement new policies and technical controls that enhance their online cybersecurity and privacy posture. We grow our impact by sharing our institutional knowledge and serving as a model and collaborative resource for other universities that want to establish similar clinics.

Elijah Baucom, Director
Leena Singal, Lecturer

In 2018, the University of Georgia’s Public Service and Outreach division, in collaboration with academic units across the UGA campus, launched the CyberArch initiative. CyberArch faculty and staff travel to counties around Georgia to provide community-based outreach and cybersecurity training to locally based, community organizations, including city/county governments, small and medium sized businesses and nonprofits.

In January 2022, the CyberArch program established an experiential learning internship for graduate and undergraduate students beginning spring semester 2022. The CyberArch program will expand to include more student interns and reach more organizations across Georgia as we move into the future.

Mark Lupo, CyberArch Coordinator, UGA Carl Vinson Institute of Government

The University of Hawai’i Cybersecurity Clinic will provide opportunities for students to conduct hands-on projects, in real-world scenarios working with business and industry partners in Maui and across Hawai’i. These project-based learning opportunities will allow students to learn about critical infrastructure and cybersecurity application skills, complementing their technical and classroom skills. Culturally relevant, hands-on projects and the use of Hawaiian storytelling techniques will help attract underrepresented students.

The clinic will be primarily based at the University of Hawai’i Maui College but will collaborate with other campuses within the University of Hawai’i System. The University of Hawai’i System comprises 10 campuses – three campuses that provide baccalaureate, master’s and doctoral degrees, and seven campuses that fall within the University of Hawai’i Community College System. All organizations will be involved with this clinic, as the impact of the clinic will be distributed across the entire state.

UNLV Free Cyber Clinic was established to help small businesses mitigate the cybersecurity risks at no cost. It offers security auditing, security policy and business continuity plan development, security device or software configuration, and employee education, and cybersecurity recommendations. The service is performed at the customer site and a comprehensive assessment report is provided to the customers. The clinic recruits students with interdisciplinary backgrounds, trains them with both technical and non-technical skills, and sponsors industrial certifications.

Qualified students after the training are allowed to offer the services to customers and can build up valuable hands-on experience over multiple years while helping the community. The clinic partners with the UNLV SBDC (Small Business Development Center) and a number of cybersecurity firms around the country, which offers career opportunities to students and advanced services to selected customers.

Professor Yoohwan Kim, Director, UNLV Free Cyber Clinic

The UMBC Cybersecurity Clinic, part of the UMBC Cybersecurity Institute (UCI), helps fulfill UCI’s mission of public outreach. The UCI fosters interdisciplinary collaboration in cybersecurity research and education through partnerships, innovation, and public engagement. In collaboration with UMBC’s undergraduate cybersecurity programs, including Computer Science and Information Systems, and the Graduate Cybersecurity Program, the clinic offers a multi-disciplinary, hands-on learning environment where students from diverse fields collaborate to address the cybersecurity needs of public organizations.

The clinic follows a three-pronged approach: vulnerability assessments, vulnerability scanning and remediation, and security operations training. This comprehensive framework provides actionable insights to underserved organizations and equips students with practical skills in cybersecurity management. By leveraging interdisciplinary expertise, UMBC students deliver tailored, high-impact cybersecurity recommendations that bolster resilience across the state of Maryland and the broader community, while gaining critical experience for careers in cybersecurity and risk management.

Jack Suess, UMBC VP of Information Technology and CIO
Laura Mateczun, UMBC Cyber Clinic Coordinator

The Spartan CyberGuardian Academy (SCGA) trains a diverse range of individuals, spanning from high school and community college students to graduate-level scholars and organizations, arming them with practical cybersecurity knowledge and skills critical to the success of organizational cybersecurity practices. The SCGA clinic offers essential cybersecurity services including auditing, training, and remediation to non-profit organizations, small businesses, and all entities within the Piedmont Triad region that lack resources or dedicated cybersecurity teams.

Committed to bridging the gap, the SCGA is dedicated to providing education, training, and services to underserved audiences, ensuring equitable access to cybersecurity expertise. In addition, the SCGA will leverage the existing programs in cybersecurity analytics at UNCG to develop new cybersecurity knowledge, artifacts, and practices.

The Texas Cybersecurity Clinic and two-course sequence is the fruit of discussions with the Department of Homeland Security Cybersecurity and Infrastructure Security Agency’s Cybersecurity Advisory Board, the City of Austin, and UT’s Robert Strauss Center for International Security and Law, all of which were interested in providing students with hands-on cybersecurity experience while also providing pro bono services to community organizations and small businesses that cannot afford such services on their own.

During the first semester course, students learn key cybersecurity defense concepts and skills, including vulnerability assessment, network configuration and security, access controls, authorization techniques, responding to a cyberattack, and penetration testing, as well as associated skills required to implement these abilities effectively in a real business or non-profit institutional setting. Students then deploy these skills—under supervision—in a real world setting in the second semester course, gaining invaluable practical experience. The clients, for their part, get the benefit of a substantially improved defensive posture.

Professor Francesca Lockhart, Cybersecurity Clinic Program Lead, Robert Strauss Center for International Security and Law at the University of Texas at Austin

The UTEP Miners Cybersecurity Clinic is a central hub for comprehensive cybersecurity services and practical training throughout the region. Led by UTEP students, the clinic focuses on enhancing cybersecurity measures for local critical infrastructures, schools, and small businesses. The UTEP Miners Cybersecurity Clinic utilizes the institution’s rich expertise and existing initiatives in cybersecurity to deliver essential cybersecurity services to under-resourced areas, significantly contributing to regional cyber hygiene and safety.

Moreover, the clinic provides students with valuable real-world experiences that bridge academic theory with practical application, contributing to developing the next generation of cybersecurity professionals.

Initially envisioned and piloted in 2004, the National Security Collaboration Center (NSCC), the Center for Infrastructure Assurance and Security (CIAS) at The University of Texas at San Antonio (UTSA) and the MITRE Corporation launched Project Xander in 2021. The project provided students with experience performing cybersecurity assessments for local nonprofits. The goal now is to add a cyber clinic portion to follow on with Project Xander activities.

The expansion will enable students outside of the classroom environment to provide assistance to local organizations needing advice and help with their cybersecurity programs. The clinic will host a help desk that local government, small business, and non-profit organizations can contact for assistance. These organizations have unique needs, as they typically have limited resources, but provide critical services to the whole community. In addition, the CIAS believes that cybersecurity clinics can be a catalyst for improving community cybersecurity under the Community Cyber Security Maturity Model (CCSMM).

Greg White, Director, Center for Infrastructure Assurance and Security, Department of Computer Science at The University of Texas at San Antonio

The WVSU Cybersecurity Clinic, together with the Cybersecurity Innovation Center (CIC), are dedicated to enhancing cybersecurity across critical infrastructure sectors against cyber threats. Its mission revolves around innovation, education, and collaboration, ensuring a resilient and secure cyber environment.

The WVSU Cybersecurity Clinic prioritizes hands-on training utilizing WVSU’s cutting-edge CyberHive, a physical critical infrastructure Industrial Control System (ICS). This state-of-the-art lab offers immersive experiences for operators, high school students, and undergraduate computer science students. Furthermore, WVSU anticipates the launch of a new Bachelor’s program in cybersecurity to further enhance educational offerings. The WVSU Cybersecurity Clinic and CIC actively engage in cybersecurity research to develop innovative solutions for protecting critical infrastructure, aiming to contribute to the advancement of cybersecurity knowledge and practices. Community outreach is integral to WVSU Cybersecurity Clinic’s mission, providing cybersecurity services and awareness programs to empower individuals and organizations with the knowledge to defend against cyber threats effectively. WVSU Cybersecurity Clinic and CIC are committed to fostering a culture of cybersecurity excellence, preparing the next generation of professionals, and ensuring the security of our critical infrastructure.

Dr. Ali Al-Sinayyid, Director of Cybersecurity Innovation Center

The Yuan Ze University Cybersecurity Clinic focuses on supporting small and medium-sized enterprises (SMEs), non-governmental organizations (NGOs), social enterprises, and other under-resourced organizations. By providing services such as risk assessments, security scanning (e.g., web application security scans, network port scans, IP reputation analysis), and protection mechanism designs, we enhance the security posture of participating organizations. Additionally, this initiative cultivates the next generation of cybersecurity professionals committed to social responsibility.

The Department of Information Management at Yuan Ze University is dedicated to advancing knowledge in the field of information security. We place great emphasis on bridging theory and practice, striving to address the ever-changing challenges in this domain.

Cheng-Ta Huang, Ph.D., Associate Professor, Department of Information Management, Yuan Ze University

The Computing Alliance of Hispanic-Serving Institutions (“CAHSI”) was formed in 2006 to address the low representation of Hispanics in higher education computing programs and in the computing workforce. CAHSI coordinates community action united around a commitment of change to solve shared improvement problems, which includes building cybersecurity workforce capacity at Hispanic-Serving Institutions (“HSIs”).

CAHSI, which involves over 80 member HSIs in the U.S. and Puerto Rico, has made expanding competencies in cybersecurity across member institutions a priority. Drawing upon its long-standing convening power and ability to support HSIs, CAHSI is excited to be an Ally of the Consortium of Cybersecurity Clinics and further engage HSIs in outreach, awareness building, and training around the cybersecurity clinic model; facilitate partnership among HSIs with existing cybersecurity clinics that are HSIs; and to ensure capacity building support.

Elizabeth Hall, Director of Research Initiatives

Virtual Routes tackles the impact of digital and emerging technologies on global affairs through research, education and public engagement with policymakers, industry, civil society, and the general public. Virtual Routes is a place for people passionate about technology and global affairs to find a like-minded community, develop new ideas and skills, and deliver positive change where it is needed most. Since its inception in 2020, Virtual Routes has built a growing community of researchers, practitioners, and policymakers who work together to understand and address some of the greatest challenges facing today’s world.

Max Smeets, Director

The Global Cyber Alliance (GCA) is an international nonprofit organization that focuses on making the Internet more secure for everyone: GCA’s vision is a secure, trustworthy Internet that enables social and economic progress for all. Unlike many nonprofits, we do this by building practical, measurable solutions and tools that are easy to use and working with partners to accelerate adoption around the world.

Our success in delivering the solutions we build at global scale is dependent on the relationships we build with organizations that have access at the regional and local level to the end users.

Gill Thomas, Director of Engagement, Capacity & Resilience Program

The National Institute of Cyber Security (NICS), under the Ministry of Digital Affairs, was established on January 1, 2023, to advance the application, competence, and R&D of Taiwan’s cybersecurity technology.

NICS’ overarching mission is to deliver cutting-edge cybersecurity technical assistance and conduct advanced research. This role augments the functions of both the Ministry of Digital Affairs and the Administration for Cyber Security (ACS). Within this framework, the Ministry of Digital Affairs is responsible for drafting national cybersecurity policy objectives and setting overall direction, while the ACS focuses on implementing and promoting cybersecurity policies.

In the context of cybersecurity clinics, NICS plays a crucial supporting role. It assists with funding, facilitates communication with the U.S. CCC, helps establish guidelines and regulations, and provides administrative support. These efforts contribute significantly to the development and smooth operation of first cybersecurity clinics in Taiwan.

Hsin-Yuan “Megan” Hu, Manager, Cybersecurity Awareness Research & Outreach Division, Center of Talent Empowerment, NICS

The R Street Institute is a nonprofit, nonpartisan public policy research organization (“think tank”). Our mission is to engage in policy research and outreach to promote free markets and limited, effective government. In addition to our D.C. headquarters, we have offices in Georgia, Texas, Ohio, Massachusetts and California.

We work extensively on both state and national policy, focusing on issues that other groups tend to neglect. Our specialty is tackling issues that are complex, but do not necessarily grab major headlines. These are the areas where we think we can have a real impact. We believe free markets work better than the alternatives. At the same time, we recognize that the legislative process calls for practical responses to current problems. To that end, our motto is: “Free markets. Real solutions.”

Brandon Pugh, Director, Cybersecurity and Emerging Threats