Information security checkups
OIT offers a service to help departments ensure that any sensitive information they use is protected in an effective manner.
Offered at no charge to both academic and administrative departments, the OIT Security Checkup Service includes a review of all aspects of information handling, such as server and workstation settings, network accessibility, ID and privilege management, application design and implementation, manual procedures, obsolete data destruction, etc.
The process begins with representatives of OIT and the requesting department meeting to map out the details of the review. An OIT Security Checkup is intended to be a collaborative effort, with members of the OIT Security team working side-by-side with the appropriate departmental personnel.
The team focuses primarily on the measures that have been or should be taken to protect confidential or sensitive information as defined either by University policy, or by an appropriate Information Guardian or department manager. General system vulnerability assessments may also be conducted at the department's request. See the University's Information Security Policy for more details regarding what information the University considers confidential, the role of Information Guardians and how information is classified.
Once the review is complete, OIT will provide a report describing the department's system and information security posture along with recommendations for enhancing security.
To sign up for an OIT security checkup, contact the University's Chief Information Security Officer, Ellen Amsel at firstname.lastname@example.org, or Anthony Scaturro, at email@example.com, with any questions, and to schedule an OIT Security Checkup for your department.