UCSF IT Security Suite
September 26, 2019 BigFix and encryption will be required to access the UCSF network
How to verify if you have BigFix installed:
On Windows computers check the system tray (aka "task bar") and verify that you see the icon with purple circle and a green arrow.
On Mac OS X computers verify that you see one of the two icons in the upper-right of the menu bar near the clock:
a blue circle with a white letter "b" or a purple circle with a green arrow similar to image below.
Install BigFix - IT Does the Rest!
BigFix is required for all desktops and laptops used for UCSF business, whether UCSF- or personally-owned. Using BigFix we can register computers, associate them with users, collect system hardware and software information, and ensure computers are patched, encrypted and protected from threats using the UCSF IT Security Suite.
What is the UCSF IT Security Suite?
The UCSF IT Security Suite is a group of tools to help keep you, your data, and UCSF safe. The Security Suite includes:
- System management agent for device inventory, security patching and software delivery. UCSF uses BigFix to deliver the other security software listed below.
- Endpoint protection software provides anti-virus and anti-malware protection, plus a host-based firewall on Windows computers
- Network Access Control (NAC) agent, to ensure minimum security standards are met before your computer connects to the UCSF network
- Endpoint Detection and Response (EDR) agent, to intercept malicious software before it can spread
- Device encryption, to protect your data from loss or theft
- Backup software, to automatically back up your data (UCSF IT supported computers only)
Downloads for all of the software mentioned here are available at https://software.ucsf.edu/ (requires MyAccess login)
Why is the Security Suite important?
- Protects your computer, your data and UCSF
- Keeps your computer compliant with UCSF’s Minimum Security Standards: UCSF Policy 650-16, Addendum B
Who Should Use UCSF IT Security Suite?
Everyone who uses a computer for UCSF work!
- Computers supported by UCSF IT Field Service receive the UCSF IT Security Suite automatically
- All other computers, including personal computers, must have the Security Suite check list and download the supporting software
1. System Management: BigFix
BigFix allows us to inventory a computer, associate the computer with a specific user, and collect hardware information (OS, CPU, RAM, hard drive space) to determine if a system can support other required software. BigFix can also be leveraged to verify patch levels and anti-virus/malware software version. Having BigFix on your computer is essential to complying with UCSF’s Minimum Security Standards (MSS).
- BigFix Endpoint Manager
- BigFix Frequently Asked Questions
- BigFix Retrieved Properties
- Download BigFix for your computer (requires MyAccess login)
2. Endpoint Protection: Symantec Endpoint Protection (SEP)
Symantec Endpoint Protection (SEP) provides anti-virus and anti-malware protection. SEP is an important tool in protecting your computer and personal information from vulnerabilities, malware, viruses, and worms.
3. Network Access Control (NAC): ForeScout SecureConnector
Ensuring computers meet UCSF’s minimum security standards is critical to keeping a sprawling enterprise like UCSF secure. Computers without critical security patches, anti-virus software or a host-based firewalls are targets for hackers and can be used to spread malware and compromise other devices on the network. Using a Network Access Control (NAC) client drastically decreases the likelihood of infected or vulnerable computers joining our network. UCSF uses the ForeScout SecureConnector agent for network access control.
- Network Access Control (NAC) (accessible from the UCSF network)
- Download ForeScout Secure Connector for your computer (requires MyAccess login)
4. Endpoint Detection and Response (EDR)
Security Endpoint Detection and Response (EDR) software looks at the behavior of your computer, along with intelligence-based indicators, to help detect, investigate and mitigate advanced threats/risks on the UCSF network. This allows us to stop malicious software from monitoring or infecting your computer, even things that SEP can’t catch.
- Security Endpoint Detection and Response (EDR) (requires MyAccess login)
- Download: the EDR agent is automatically deployed via BigFix
5. Device Encryption
Given the prevalence of restricted data (including protected health information, financial information, personal information, intellectual property, etc.) in the UCSF environment, all endpoints (desktops, laptops, and mobile devices including smartphones and tablets) used for UCSF business must be encrypted. This applies to both UCSF-owned and non-UCSF-owned endpoints. UCSF IT offers state of the art encryption software for Windows and Mac computers. All IT-supported computers are deployed encrypted, and we will help you encrypt your personal device at any UCSF IT Health Desk.
- How to Encrypt your computer
- More information on what needs to be encrypted
- Use the guide to help determine if your Mac OS X or Windows computer has encryption
6. Backup Software
We would like to underscore the importance of backing up your data. If you have an ITFS-managed computer, then it is backed up automatically with CrashPlan. You can verify that backups are working by following the instructions on the CrashPlan page below or contact the IT Service Desk at 415-514-4100. If you are not supported by ITFS you can find out about support levels and costs here: https://it.ucsf.edu/services/category/support.