Secure Computing Project - Information and Town Halls

Secure Computing Project: Enhancing Our Cybersecurity

We need your help securing our campus technology resources:

While we have always been security conscious in I&S, the complexity, speed, and number of cyber threats are increasing, including targeted attacks against colleges and universities. These threats range from phishing attacks, where attackers impersonate trusted entities to steal sensitive information, to malicious actors using advanced techniques to compromise our systems and  data.

To better protect our university’s data and resources, including your personal information, we have been working on several initiatives, in conjunction with the campus IT Security Office and OIT, to enhance and align I&S security measures  with campus security standards. In summary it is a campus-wide initiative to both standardize, and strengthen the security of campus IT security.

How does this affect you?

Some of the changes are being done behind the scenes and may not even be noticeable to most end users.  Other changes, such as new software versions, changes to how computers are deployed, required reboots, or additional steps needed to login to systems, will be more noticeable.

Software Patches:

In addition to upgrading versions of software, you will also notice a difference in how software patches are installed. Your computer will prompt you when patches are installed and a reboot is needed to complete the install. You will be able to snooze the alert at 4-hour intervals for up to a week.

If you do not allow the computer to reboot by the deadline, your computer will automatically reboot. To avoid interruptions or loss of unsaved work, please be sure you allow the updates and reboot your computer well ahead of the deadline.

Software Upgrades:

One of the most common ways an attacker can gain access to our systems is through outdated and unpatched software.  To minimize this risk, all software needs to be upgraded to current, supported versions. Some specific upgrades you are most likely to notice are:

• Windows 11 will replace Windows 10
• Microsoft Office 365 will replace older versions of Office
• Adobe Acrobat DC will replace older versions

Computer Deployments and Upgrades:

If your computer is up for renewal and replacement before October of 2025, your computer will be replaced under its normal schedule.  New computers are deployed using a process that requires more hands-on time by the user. We have IT Professionals who will assist you with this process, and we welcome feedback about how we can continue to make improvements to the process.

If your computer is relatively new and not scheduled to be replaced before October of 2025, we will be working with you to upgrade your computer to current software versions.

OneDrive:

In the past we have recommended storing all university documents on department supported file servers (Cotterpin, FMFiles, Kingtut, UCBFiles) and document management systems (Meridian) to ensure that our data is backed up to protect against data loss.

Please note that documents shared with your work group do not need to move off Cotterpin, Meridian, etc. If you would like to explore other options for shared file storage, please reach out to us for a consultation.

With OneDrive, documents stored on your computer’s hard drive can also be backed up. All new computers are deployed with this feature enabled and users Documents, Desktop, Pictures, and Downloads folders will be backed up to their personal OneDrive accounts.

For computers which were not deployed with OneDrive pre-configured, please follow our self-documents on the website or contact one of our IT Professionals for assistance in setting OneDrive up.

Multi-factor authentication:

Another common way attackers gain access to our systems is by compromising our passwords. Multi-factor authentication, such as DUO, adds an additional layer of security, greatly reducing this risk.

You likely have already noticed this new requirement implemented for the campus VPN, MyCUInfo portal, among other resources on campus.

Security Training:

Please be sure to complete the required security trainings in SkillSoft. We will also be sending out information regarding current threats to you via e-mail, the newsletter, and our internal website.

Behind the scenes:

The following changes are taking place mostly behind the scenes:

• Microsoft Defender for Endpoints has replaced Symantec Antivirus. While both are excellent products for protecting against malicious software, integrating with the campus-wide Defender system allows the IT Security Office to respond much faster to threats across all departments on campus.
• Microsoft Endpoint Configuration Manager (MECM) is replacing tools used to install and update software on your computer. The most noticeable difference for users are the Software Center, and the look and feel of the update notifications.
• Bitlocker whole disk encryption is being enabled on all laptops and desktops to protect data stored on local hard drives.
• Similar security enhancements are being made on our department servers.

What else can you do?

As we implement any change, we understand this may affect how you use your computer to do your work. We always appreciate your patience as we navigate these changes, and welcome constructive feedback so we may continue to improve the new processes.

Attend an Upcoming Town Hall

If you would like to know more about this initiative and have an opportunity to ask questions of our I&S IT team please register for an upcoming town hall by filling out the form below.  These town halls will be offered in person in RL2 and also remotely via ZOOM.

• Thursday, May 23, 1- 2pm, RL2 Room 321 or online via ZOOM
• Tuesday, June 4, 1 - 2pm, RL2 Room 321 or online via ZOOM

Register for one of the upcoming I&S Town Halls here

FAQ:

What if I need to run old software?

If you have a business need to use older, outdated software. Please contact I&S IT for a consultation so we can develop a plan and timeframe for upgrading, and if needed, a plan to mitigate the risks of running it until it can be upgraded or decommissioned.

Why does my computer sometimes force reboots to update in less than one week?

Occasionally the security office may need to push out high-priority critical security updates on a shorter deadline. You will have a much shorter timeframe to install them than usual, please install them as soon as possible as these are only pushed out when there is an active threat.

Will whole drive encryption cause any issues accessing my data away from the office?

It shouldn’t. It some very rare instances Windows might request a recovery key on boot up. If this happens you can reach out to the I&S IT team to get that recovery key. Again, this is a very rare occurrence.

Is this related to the Campus Certified Computers?

Yes, basically the same thing by a different name.