The Information Security Office (ISO) continuously strives for daily operational excellence
to ensure the confidentiality, availability, and integrity of University of Utah
information technology systems and data through exploitation of appropriate security
resources and best practices.
RECENT NEWS
UIT is pleased to announce that Jake Johansen has been promoted to associate director for enterprise security within the Information Security Office, effective Friday, November 15, 2019. He will report to Chief Information Security Officer Corey Roach.
"Jake has excelled as a top-tier security architect and engineer. He has the respect of security professionals throughout the campus and the state," Roach said. "It's exciting to see him take on this new role as a leader and mentor. I'm confident he will rise to the challenge, and he'll make an even more significant contribution to improving information security at the University of Utah."
NCSAM IS ENDING, BUT CYBERSECURITY ISN'T A ONE-AND-DONE
As of January 2019, the world’s internet users spend an average of 6 hours and 42 minutes online each day. That’s almost an entire work shift or the last two theatrical film releases of “The Lord of the Rings” trilogy combined.
Now think about all the devices you own that connect to the internet, either automatically or when prompted. You can see how we’re connected now more than ever — and thus more vulnerable to cyberthreats.
That’s why cybersecurity is so important.
COREY ROACH NAMED CHIEF INFORMATION SECURITY OFFICER
UIT is pleased to announce that Corey Roach has been named the University of Utah's permanent chief information security officer (CISO) effective Tuesday, October 1, 2019. Roach has served as interim CISO since July. The CISO reports to University of Utah Chief Information Officer Steve Hess and University of Utah Health Chief Information Officer James Turnbull, is a member of the UIT Leadership team, and leads the UIT Information Security Office.
tips & resources
Phishing lessons
You realize it a moment too late: You fell for a malicious email, clicked a bad link, and entered your password on a suspicious site. You’ve just been phished! Now what?
If you click on a questionable link and enter login credentials, immediately change your password in the CIS portal — and in any personal accounts that may be compromised.
Secure those passwords!
Is your password secure enough?
Easy-to-guess, "weak" passwords are the main way criminals gain access to system information. Keeping passwords safe and hard to guess is critical to ensure information is not compromised.
Take a moment to review the University of Utah's password requirements and guidelines.
Add a layer of protection
to your university account
According to the FBI and U.S. Department of Homeland Security, higher education institutions are increasingly becoming a target for cybercriminals. Multi-factor authentication (MFA) decreases the chances of a security attack because the criminal cannot access data with your login credentials alone.
That’s where Duo two-factor authentication (2FA) comes in — the idea that you are authenticating your identity via two separate factors, one of which isn’t your password.
Helpful Links
- Report a security incident
- Report phishing to phish@utah.edu
- U of U Policy 4-004: Information Security Policy — Questions? Contact ISO-GRC@utah.edu.
- Org chart: ISO comprises four areas — Enterprise Security; Governance, Risk & Compliance (GRC); Identity & Access Management (IAM); and Security Assurance.
UofU IT News & Info
- UIT: Node 4
- ITS: Hardwired (authentication required)