An endpoint is defined as any laptop, desktop, or mobile device.
Follow the minimum security standards in the table below to safeguard your endpoints. NOTE: All personally owned endpoints that are use to access (store or transmit) University data are required to adhere to these Minimum Security Standards.
STANDARDS | RECURRING TASK | WHAT TO DO ? | LOW RISK | MODERATE RISK | HIGH RISK |
Patching | ✔ | Apply security patches within seven days of publish. Use a supported OS version. | ✔ | ✔ | ✔ |
Whole Disk Encryption Desktops |
|
| Enable FileVault2 for Mac, BitLocker for Windows. Install MDM on mobile devices. |
| ✔ | ✔ |
Whole Disk Encryption Mobile Devices |
| Enable FileVault2 for Mac, BitLocker for Windows. Install MDM on mobile devices. | ✔ | ✔ | ✔ |
Malware Protection and Intrusion Prevention |
| Install antivirus (Symantec End Protection (SEP) recommended). | ✔ | ✔ | ✔ |
Backups | ✔ | Back up user data at least daily. Encrypt backup data in transit and at rest. | ✔ | ✔ | ✔ |
Inventory | ✔ | Review and update records quarterly. Maximum of one node per record. | ✔ | ✔ | ✔ |
Configuration Management |
| |
|
| ✔ |
Regulated Data Security Controls |
|
| Implement PCI DSS, HIPAA, FISMA, or export controls as applicable. |
| |
|
| ✔ |
Two-factor Authentication |
Require Duo
| Require two-factor authentication for interactive user and administrator logins. |
| ✔ | ✔ |
Security Training | ✔ | Complete annual Secure the Human Training. | ✔ | ✔ | ✔ |
Short URL to this page:
...
Live Search |
---|
size | large |
---|
additional | page excerpt |
---|
placeholder | Search Answers |
---|
type | page |
---|
|
...
Filter by label (Content by label) |
---|
showLabels | false |
---|
max | 5 |
---|
spaces | SKB |
---|
showSpace | false |
---|
sort | modified |
---|
reverse | true |
---|
type | page |
---|
cql | label in ( "security" , "standards" , "endpoints" ) and type = "page" and space = "SKBSC" |
---|
labels | security standards endpoints |
---|
|
...