it.ucsf.edu

UCSF IT Security Suite

Michael Kearns's picture

Install BigFix - IT Does the Rest!
BigFix 64x64 icon

BigFix is required for all desktops and laptops used for UCSF business, whether UCSF- or personally-owned. Using BigFix we can register computers, associate them with users, collect system hardware and software information, and ensure computers are patched, encrypted and protected from threats using the UCSF IT Security Suite.

What is the UCSF IT Security Suite?

The UCSF IT Security Suite is:

  1. System management agent for device inventory, security patching and software delivery. UCSF uses BigFix to deliver the other security software listed below.
  2. Endpoint protection software provides anti-virus and anti-malware protection, plus a host-based firewall on Windows computers
  3. Network Access Control (NAC) agent, to ensure minimum security standards are met before your computer connects to the UCSF network
  4. Endpoint Detection and Response (EDR) agent, to intercept malicious software before it can spread
  5. Device encryption, to protect your data from loss or theft
  6. Backup software, to automatically back up your data (UCSF IT supported computers only)

Downloads for all of the software mentioned here are available at https://software.ucsf.edu/ (requires MyAccess login)

Why is the Security Suite important?

Who Should Use UCSF IT Security Suite?

Everyone who uses a computer for UCSF work!

  • Computers supported by UCSF IT Field Service receive the UCSF IT Security Suite automatically
  • All other computers, including personal computers, must have the Security Suite check list and download the supporting software

1. System Management: BigFix 
BigFix 64x64 icon

BigFix allows us to inventory a computer, associate the computer with a specific user, and collect hardware information (OS, CPU, RAM, hard drive space) to determine if a system can support other required software. BigFix can also be leveraged to verify patch levels and anti-virus/malware software version. Having BigFix on your computer is essential to complying with UCSF’s Minimum Security Standards (MSS).

Additional information:

2. Endpoint Protection: Symantec Endpoint Protection (SEP) 
Symantec Endpoint Protection 64x64 icon

Symantec Endpoint Protection (SEP) provides anti-virus and anti-malware protection. SEP is an important tool in protecting your computer and personal information from vulnerabilities, malware, viruses, and worms.

Additional information:

3. Network Access Control (NAC): ForeScout SecureConnector 
ForeScout SecureConnector 64x64 icon

Ensuring computers meet UCSF’s minimum security standards is critical to keeping a sprawling enterprise like UCSF secure. Computers without critical security patches, anti-virus software or a host-based firewalls are targets for hackers and can be used to spread malware and compromise other devices on the network. Using a Network Access Control (NAC) client drastically decreases the likelihood of infected or vulnerable computers joining our network. UCSF uses the ForeScout SecureConnector agent for network access control.

Additional information:

4. Endpoint Detection and Response (EDR)

Security Endpoint Detection and Response (EDR) software looks at the behavior of your computer, along with intelligence-based indicators, to help detect, investigate and mitigate advanced threats/risks on the UCSF network. This allows us to stop malicious software from monitoring or infecting your computer, even things that SEP can’t catch.

Additional information:

5. Device Encryption 
Dell Data Protection Enterprise 64x64 icon

Given the prevalence of restricted data (including protected health information, financial information, personal information, intellectual property, etc.) in the UCSF environment, all endpoints (desktops, laptops, and mobile devices including smartphones and tablets) used for UCSF business must be encrypted. This applies to both UCSF-owned and non-UCSF-owned endpoints. UCSF IT offers state of the art encryption software for Windows and Mac computers. All IT-supported computers are deployed encrypted, and we will help you encrypt your personal device at any UCSF IT Health Desk.

Additional information:

6. Backup Software 
Code42 CrashPlan 64x64 icon

We would like to underscore the importance of backing up your data. If you have an ITFS-managed computer, then it is backed up automatically with CrashPlan. You can verify that backups are working by following the instructions on the CrashPlan page below or contact the IT Service Desk at 415-514-4100. If you are not supported by ITFS you can find out about support levels and costs here: https://it.ucsf.edu/services/category/support.

Additional information: