Presentation is loading. Please wait.

Presentation is loading. Please wait.

Information Security Information Technology and Computing Services Information Technology and Computing Services

Published byCharles Williams Modified over 9 years ago

Similar presentations

Presentation on theme: "Information Security Information Technology and Computing Services Information Technology and Computing Services"— Presentation transcript:

1 Information Security Information Technology and Computing Services http://www.ecu.edu/itcs Information Technology and Computing Services http://www.ecu.edu/itcs

2 Security Fallacies  We have antivirus software, so we are secure  We have a firewall, so we are secure  The most serious threats come from the outside  I don’t care about security because I backup my data daily  Responsibility for security rests with IT Security Staff  We have antivirus software, so we are secure  We have a firewall, so we are secure  The most serious threats come from the outside  I don’t care about security because I backup my data daily  Responsibility for security rests with IT Security Staff

3 IT Security Components  Firewalls  Intrusion Detection Software  Antivirus Software  Updated OS and Applications  Continual education for staff and users  User cooperation and compliance  Most critical component  Most difficult to achieve  Firewalls  Intrusion Detection Software  Antivirus Software  Updated OS and Applications  Continual education for staff and users  User cooperation and compliance  Most critical component  Most difficult to achieve

4 Security Threats  Malware-viruses, worms, trojans, spyware  Security patches not applied  Hacking and network scanning  Social engineering  Chat and Instant Messaging software  Weak Passwords  Unawareness, carelessness  Malware-viruses, worms, trojans, spyware  Security patches not applied  Hacking and network scanning  Social engineering  Chat and Instant Messaging software  Weak Passwords  Unawareness, carelessness

5 What can you do?  Report Incidents (helpdesk)  Passwords  Backups  E-mail use and Security  Internet Security  Mobile Devices  Physical Security  Report Incidents (helpdesk)  Passwords  Backups  E-mail use and Security  Internet Security  Mobile Devices  Physical Security

6  Use/Update antivirus software  Patch OS and Applications  Don’t use P2P file sharing software  Use software firewalls  Use your locks-door and computer  Don’t reveal your password to anybody  Don’t reveal confidential information  Use/Update antivirus software  Patch OS and Applications  Don’t use P2P file sharing software  Use software firewalls  Use your locks-door and computer  Don’t reveal your password to anybody  Don’t reveal confidential information

7  Safe Computing  Add-ons to Internet browsers  Add-ons to e-mail clients  Aftermarket screensavers  Instant Messenger software  If you have been hacked change all your passwords  Safe Computing  Add-ons to Internet browsers  Add-ons to e-mail clients  Aftermarket screensavers  Instant Messenger software  If you have been hacked change all your passwords

8 Antivirus Policy  All networked machines must run Symantec AV software  Site license for Symantec AV  Free copy for every Windows and Macintosh computer  Free copy to load on home computers  Infected computers will be removed from the network until cleaned  All networked machines must run Symantec AV software  Site license for Symantec AV  Free copy for every Windows and Macintosh computer  Free copy to load on home computers  Infected computers will be removed from the network until cleaned

9 Mobile Security  Password protection  Encryption  Physical security  WiFi (wireless technologies)  All devices must be registered and authenticated using pirateID  Telecommuting (remote access)  Password protection  Encryption  Physical security  WiFi (wireless technologies)  All devices must be registered and authenticated using pirateID  Telecommuting (remote access)

10 Data Security  Data and You (protection of sensitive data)  Continuity of Operations / Disaster Recovery (ensure you have a plan)  Identity Theft / Phishing (don’t be a victim)  Physical Security  Data and You (protection of sensitive data)  Continuity of Operations / Disaster Recovery (ensure you have a plan)  Identity Theft / Phishing (don’t be a victim)  Physical Security

11 HIPAA Privacy & Security  All workforce members must be trained on HIPAA security issues if they access computers that contain EPHI. This training will help to assist you in protecting the confidentiality, security and integrity of EPHI. We all have certain responsibilities in implementing safeguards and actions to protect EPHI.  http://www.ecu.edu/cs- itcs/itsecurity/HIPAA-Privacy- Security.cfm  All workforce members must be trained on HIPAA security issues if they access computers that contain EPHI. This training will help to assist you in protecting the confidentiality, security and integrity of EPHI. We all have certain responsibilities in implementing safeguards and actions to protect EPHI.  http://www.ecu.edu/cs- itcs/itsecurity/HIPAA-Privacy- Security.cfm

12 FERPA  Avoid copying or downloading sensitive data from university systems  If there are no other alternatives then proper security measures must be taken  Avoid using SSN #’s in databases or applications as identifiers  Avoid sending sensitive data un-encrypted  Protect sensitive data  Avoid social engineers that try to get you to share information  Secure your workstations  http://www.ecu.edu/cs-itcs/itsecurity/FERPA- ECU.cfm  Avoid copying or downloading sensitive data from university systems  If there are no other alternatives then proper security measures must be taken  Avoid using SSN #’s in databases or applications as identifiers  Avoid sending sensitive data un-encrypted  Protect sensitive data  Avoid social engineers that try to get you to share information  Secure your workstations  http://www.ecu.edu/cs-itcs/itsecurity/FERPA- ECU.cfm

13 Ways to Protect yourself @ HOME  WiFi Security  Symantec Antivirus  Backup!  Passwords  Bank and Credit Card Information  Firewall  OS Patches  Instant Messaging  E-mail  Encryption  WiFi Security  Symantec Antivirus  Backup!  Passwords  Bank and Credit Card Information  Firewall  OS Patches  Instant Messaging  E-mail  Encryption

14 Problems or Questions  Don’t call individual ITCS employees  Call IT Support Services @ 328-9866  Single point contact  All calls forwarded to appropriate consultant  Open a Service Request  www.ecu.edu/9866  http://www.ecu.edu/cs- itcs/safetySecurity.cfm  Don’t call individual ITCS employees  Call IT Support Services @ 328-9866  Single point contact  All calls forwarded to appropriate consultant  Open a Service Request  www.ecu.edu/9866  http://www.ecu.edu/cs- itcs/safetySecurity.cfm

Download ppt "Information Security Information Technology and Computing Services Information Technology and Computing Services"

Similar presentations

Keep Your PC Safe (Windows 7, Vista or XP) Nora Lucke 02/05/2012 Documents - security.

Keep Your PC Safe (Windows 7, Vista or XP) Nora Lucke 02/05/2012 Documents - security.
Tips and tools to keep you and your information safe on-line. We will go over a lot of information today, so it is important to pay attention and follow.

Tips and tools to keep you and your information safe on-line. We will go over a lot of information today, so it is important to pay attention and follow.
Darton College Information Systems Use Policies. Introduction Dartons Information Systems are critical resources. The Information Systems Use Policies.

Darton College Information Systems Use Policies. Introduction Dartons Information Systems are critical resources. The Information Systems Use Policies.
Primary Threats to Computer Security

Primary Threats to Computer Security
1 Electronic Information Security – What Researchers Need to Know University of California Office of the President Office of Research May 2005.

1 Electronic Information Security – What Researchers Need to Know University of California Office of the President Office of Research May 2005.
Guide to Massachusetts Data Privacy Laws & Steps you can take towards Compliance.

Guide to Massachusetts Data Privacy Laws & Steps you can take towards Compliance.
Phishing (pronounced “fishing”) is the process of sending e-mail messages to lure Internet users into revealing personal information such as credit card.

Phishing (pronounced “fishing”) is the process of sending messages to lure Internet users into revealing personal information such as credit card.
Presented by: Luke Speed Computer Security. Why is computer security important! Intruders hack into computers to steal personal information that the user.

Presented by: Luke Speed Computer Security. Why is computer security important! Intruders hack into computers to steal personal information that the user.
Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services

Cyber Security - Threats James Clement Network Specialist ETS: Communications & Network Services
Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.

Lesson 9-Securing a Network. Overview Identifying threats to the network security. Planning a secure network.
IT Security Essentials Ian Lazerwitz, Information Security Officer.

IT Security Essentials Ian Lazerwitz, Information Security Officer.
Computer Security 1 Keeping your computer safe. Computer Security 1 Computer Security 1 includes two lessons:  Lesson 1: An overview of computer security.

Computer Security 1 Keeping your computer safe. Computer Security 1 Computer Security 1 includes two lessons:  Lesson 1: An overview of computer security.
GET CONTROL! Avoid The Headache… Five Simple Steps to a Safer Computer – NUIT Tech Talk.

GET CONTROL! Avoid The Headache… Five Simple Steps to a Safer Computer – NUIT Tech Talk.
Presented by Manager, MIS.  GRIDCo’s intentions for publishing an Acceptable Use Policy are not to impose restrictions that are contrary to GRIDCo’s.

Presented by Manager, MIS.  GRIDCo’s intentions for publishing an Acceptable Use Policy are not to impose restrictions that are contrary to GRIDCo’s.
Viruses & Destructive Programs

Viruses & Destructive Programs
Internet Safety By Megan Wilkinson. Viruses If your computer haves a viruses on it, it will show one of them or a different one. All commuters have different.

Internet Safety By Megan Wilkinson. Viruses If your computer haves a viruses on it, it will show one of them or a different one. All commuters have different.
Internet safety By Lydia Snowden.

Internet safety By Lydia Snowden.
Internet safety Viruses A computer virus is a program or piece of code that is loaded onto your computer without your knowledge and runs against your.

Internet safety Viruses A computer virus is a program or piece of code that is loaded onto your computer without your knowledge and runs against your.
Computer security virus, hacking and backups. Computer viruses are small software programs that are designed to spread from one computer to another.

Computer security virus, hacking and backups. Computer viruses are small software programs that are designed to spread from one computer to another.
eScan Total Security Suite with Cloud Security

eScan Total Security Suite with Cloud Security

Similar presentations

Ads by Google