general🌐InternationalCSO Online
CERN: how does the international research institution manage risk?
Thursday, December 25, 2025
What
CERN's Chief Information Security Officer, Stefan Lüders, highlighted the institution's vulnerabilities to various cyber threats, including ransomware and espionage, due to its extensive network of devices and transient user base. The organization employs a 'defense in depth' strategy, utilizing network monitoring to protect against unauthorized access while accommodating a bring-your-own-device (BYOD) policy. This approach is crucial for safeguarding sensitive research data while fostering an open academic environment.
Where
CERN, located in Meyrin, Switzerland, with facilities extending along the Franco-Swiss border.
When
Ongoing challenges as of the latest report in October 2023.
Key Factors
- •CERN has over 200,000 devices on its network, many of which are personal devices brought by users.
- •The organization employs network monitoring as part of its defense strategy due to the inability to install security software on user-owned devices.
- •CERN's security measures must adapt to the diverse and fluctuating nature of its international research community.
Takeaways
- →Organizations must find a balance between security and usability, especially in collaborative environments.
- →The need for continuous communication and education about cybersecurity is essential in fostering a culture of security awareness.
- →Implementing robust monitoring systems can help mitigate risks associated with BYOD policies.
Read Full Article
Opens original article on CSO Online
