The Information Security Office (ISO) continuously strives for daily operational excellence
to ensure the confidentiality, availability, and integrity of University of Utah
information technology systems and data through exploitation of appropriate security
resources and best practices.
Now live: UMail, Office 365 security upgrades
Recent NewsMore Security News
uNID password change required for main campus users
Due to a recent security incident, all University of Utah students, faculty, and staff who are not University of Utah Health employees or Epic users will be required to change their uNID passwords by Wednesday, August 5, 2020 — unless you changed your password after Sunday, July 19, 2020.
Security upgrades will impact UMail, Microsoft users
Zoom contest brings out ISO staff's creative side
After Identity & Access Management Associate Director Chris Stucker nonchalantly joined a recent Zoom meeting with a nifty new background, Chief Information Security Officer Corey Roach created the contest as a team-building challenge.
tips & resources
Telecommuting? Follow these security best practices.
Compared to working on campus, telecommuting can present different information security risks, especially when it comes to network security, data storage, and physical security. By following these best practices, you can help protect yourself and the university from cyberthreats.
Using a VPN to access the campus network
To access certain resources on the University of Utah network, university employees and students working or studying remotely should use a secure virtual private network (VPN).
- Cisco AnyConnect
- Palo Alto Global Protect
- Departmental VPN
Phishing lessons
You realize it a moment too late: You fell for a malicious email, clicked a bad link, and entered your password on a suspicious site. You’ve just been phished! Now what?
If you click on a questionable link and enter login credentials, immediately change your password in the CIS portal — and in any personal accounts that may be compromised.
Secure those passwords!
Is your password secure enough?
Easy-to-guess, "weak" passwords are the main way criminals gain access to system information. Keeping passwords safe and hard to guess is critical to ensure information is not compromised.
Take a moment to review the University of Utah's password requirements and guidelines.
Adding a layer of protection to your university account
According to the FBI and U.S. Department of Homeland Security, higher education institutions are increasingly becoming a target for cybercriminals. Multi-factor authentication (MFA) decreases the chances of a security attack because the criminal cannot access data with your login credentials alone.
That’s where Duo two-factor authentication (2FA) comes in — the idea that you are authenticating your identity via two separate factors, one of which isn’t your password.
SECURITY CHAMPS
The Information Security Office is looking for engaged, enthusiastic Security Champs to help us strengthen university-wide information security risk management through education and collaboration.
Upcoming meeting
A Security Champs meeting will be held on Thursday, August 20, 2020, from 12:30-1:00 p.m. via Zoom. The session will include security updates and a Q&A opportunity. For more information or an invitation, please contact iso-grc@utah.edu.
Helpful Links
- Report a security incident
- Report phishing to phish@utah.edu
- U of U Policy 4-004: Information Security Policy — Questions? Contact ISO-GRC@utah.edu.
- Org chart: ISO comprises four areas — Enterprise Security; Governance, Risk & Compliance (GRC); Identity & Access Management (IAM); and Security Assurance.
UofU IT News & Info
- UIT: Node 4
- ITS: Hardwired (authentication required)