Navigation auf


Central IT Staff

Current Programme of the Brown-Bag Sessions

Information Security at UZH - Security, Protection and Risks in the Digital Realm

Do you feel like you know your digital footprint? Are you familiar with "crime as a service"? The increasing number of cyber attacks and their damaging effects are a cause for concern for universities, companies and politicians alike. In an increasingly digital society, we are all affected by cybercrime and are challenged to protect ourselves and our fellow human beings.

Information security is an important part of this protection to safeguard confidential information from unauthorized access, modification or destruction, thus ensuring the integrity, availability and confidentiality of information.

Find out more about the background, motives and procedures of cyber attacks and get to know hands-on tips on how to protect your information security and that of others, not only within UZH.


Target Audience:

The events are aimed in particular at employees of the administrative and technical staff of the University of Zurich. The events are open to all members of UZH.

Date and time:

Events will be held every Wednesday from 12:30 to 13:30 between May 17, 2023 and June 14, 2023.


•    The events are held on site. Most events offer participation via online live streaming for UZH members.
•    In May, the events will take place in room SOC-F-106 and in June in room KO2-F-152.
•    You can find the link to the live stream in Microsoft Teams (link to team "ZI - Lunchveranstaltungen"). In Teams, you can also ask questions about and during the events via chat. To access the team you need your personal UZH login.


•    No registration is required to attend the events
•    Most of the events will be recorded and made accessible to all UZH members on the Mediaspace.


Date and venue Topic

17 May 2023

12:30 to 13:30


Prof. Dr. Burkhard Stiller, Director of the Department of Informatics, UZH

(lecture in English)

A Technical and Economic Approach for Cybersecurity Planning and Investment

The increasing number of cyberattacks and their potential disruptive impacts cause significant concerns for companies, governments, and society. A successful cyberattack can, for example, cause financial losses due to business disruption, affect the privacy of people due to data leakages, and make critical resources completely inaccessible for interested stakeholders. This puts cybersecurity at the center of a digital society and as one of the anchors to all technologies and industries that support a connected and automated society. Therefore, it is essential to look at cybersecurity not only as a technical problem, but also from the economic, societal, and legal perspectives, which this talk will do.

24. May 2023

12:30 to 13:30


Oliver Schmid, Chief Information Security Officer (CISO), UZH

(lecture in German)

Information security at UZH - how does it affect me?

Are you familiar with "crime as a service"? This billion-dollar business is one of the major challenges for information security and affects UZH as well. In this event, you will gain insight into the motives and procedures of cyber attacks and how you can contribute to better information security at UZH.

31 May 2023

12:30 to 13:30

Venue: SOC-F-106

Oussama Zgheb, Security Software Developer, the i-engineers AG

(lecture in German)

Information security in your daily life

The necessity of strong passwords and the use of two-factor authentication are well known. This event will provide you with further important advice on how to better protect your business and personal data and information in your day-to-day routine.

Diese einfach umzusetzenden Massnahmen tragen dazu bei, den Schutz Ihrer Daten zu erhöhen. Sie können jedoch nicht alle Risiken ausschliessen. Deshalb ist es wichtig, wachsam zu bleiben und sich über neue Bedrohungen und Schutzmassnahmen auf dem Laufenden zu halten.

07 Jun3 2023

12:30 to 13:30


(no live-stream, no recording)

Markus Golder, Team Lead Legal Services and Data Protection, UZH

(lecture in German)

Data protection at UZH: key aspects in overview

Data protection and information security are two complementary concepts that help ensure that information is handled securely and confidentially.

While information security seeks to protect all types of data (ensuring confidentiality, integrity and availability), data protection describes the rules and procedures that help protect the privacy and security of personal data. This includes the processing, storage and transmission of data, the risks and responsibilities involved, and the affected individuals' rights.

Using a practical approach, this lecture will highlight the particularities of data protection in information security as well as the underlying legal basis.

Wednesday, 14 Jun3 2023

12:30 to 13:30


Ivano Somaini, Regional Manager Zürich, Compass Security AG

Find Me If You Can

(lecture in German)

Do you know the digital footprint you leave behind in your activities on the Internet? Are you aware of how an attacker can use this information? This lecture will adress precisely these questions.

Ivano Somaini has specialized in social engineering over the past few years, training with Christopher Hadnagy, founder of  He quickly realized that his success as a social engineer is directly dependent on the amount of information he can unearth about the attack target. The more information he is able to find, the more plausible the attack scenarios he can model.

For this is why Ivano learned open source intelligence techniques from Mike Bazell, a former FBI undercover agent. OSINT is a systematic approach to obtaining information using publicly available tools.    

In his talk, Ivano will illustrate how criminal hackers are cleverly using these tools, collecting data and modeling attack scenarios. 

Weiterführende Informationen

Lunchveranstaltungen der Informatikdienste

Teaser Text