Skip to content

Main Navigation

The Information Security Office (ISO) continuously strives for daily operational excellence to ensure the confidentiality, availability, and integrity of University of Utah
information technology systems and data through exploitation of appropriate security resources and best practices.

Now live: UMail, Office 365 security upgrades 


Recent NewsMore Security News

uNID password change required for main campus users

Due to a recent security incident, all University of Utah students, faculty, and staff who are not University of Utah Health employees or Epic users will be required to change their uNID passwords by Wednesday, August 5, 2020 — unless you changed your password after Sunday, July 19, 2020. 

Security upgrades will impact UMail, Microsoft users

Starting  July 15, 2020, the university will begin implementing Microsoft modern authentication and, in a phased approach, two-factor authentication (2FA) for UMail and all university-licensed O365 applications, including Skype for Business and Teams.

Zoom contest brings out ISO staff's creative side

After Identity & Access Management Associate Director Chris Stucker nonchalantly joined a recent Zoom meeting with a nifty new background, Chief Information Security Officer Corey Roach created the contest as a team-building challenge.

tips & resources

Telecommuting? Follow these security best practices.

Compared to working on campus, telecommuting can present different information security risks, especially when it comes to network security, data storage, and physical security. By following these best practices, you can help protect yourself and the university from cyberthreats.


Using a VPN to access the campus network

To access certain resources on the University of Utah network, university employees and students working or studying remotely should use a secure virtual private network (VPN).

University of Utah VPN options:
  • Cisco AnyConnect
  • Palo Alto Global Protect 
  • Departmental VPN


Phishing lessons

You realize it a moment too late: You fell for a malicious email, clicked a bad link, and entered your password on a suspicious site. You’ve just been phished! Now what?

If you click on a questionable link and enter login credentials, immediately change your password in the CIS portal — and in any personal accounts that may be compromised.


Secure those passwords!

Secure those passwords!

Is your password secure enough?

Easy-to-guess, "weak" passwords are the main way criminals gain access to system information. Keeping passwords safe and hard to guess is critical to ensure information is not compromised.

Take a moment to review the University of Utah's password requirements and guidelines.




Adding a layer of protection to your university account

According to the FBI and U.S. Department of Homeland Security, higher education institutions are increasingly becoming a target for cybercriminals. Multi-factor authentication (MFA) decreases the chances of a security attack because the criminal cannot access data with your login credentials alone.

That’s where Duo two-factor authentication (2FA) comes in — the idea that you are authenticating your identity via two separate factors, one of which isn’t your password.





The Information Security Office is looking for engaged, enthusiastic Security Champs to help us strengthen university-wide information security risk management through education and collaboration.


   Upcoming meeting

A Security Champs meeting will be held on Thursday, August 20, 2020, from 12:30-1:00 p.m. via Zoom. The session will include security updates and a Q&A opportunity. For more information or an invitation, please contact

Helpful Links

UofU IT News & Info

Security advisories



Last Updated: 8/7/20