Feb. 22: Attend a session on IT security standards
The IT Security Community and Michigan IT staff are invited and encouraged to attend an information session about vulnerability management and data & device disposal February 22.
Category Archives: Safe Computing
Michigan Medicine employees get new cybersecurity reminders
Starting in January, the Information Assurance Michigan Medicine Education & Awareness Program began publishing monthly IT security awareness reminders titled “Cyber Safety — Review in 2.” The campaign’s goal is to increase awareness of key cybersecurity topics by presenting important information that can be reviewed in two minutes or less. To encourage the Michigan Medicine workforce to learn more about… Read More »
Reminder on sensitive data in U-M Box
Box at U-M may be used with some types of sensitive data, including Protected Health Information (PHI), according to the U-M Sensitive Data Guide. You are responsible for using Box appropriately with sensitive university data and taking the necessary precautions. Sensitive data should be stored in a folder owned by a Shared Account. Please review Box: Working with… Read More »
Tax fraud prevention tips
U-M Information Assurance (IA) offers tips to help you protect yourself from identity theft and tax fraud.
Everything you ever wanted to know about privacy
Miss out on Privacy@Michigan? Don’t worry, you can watch the recording and catch up on the online conversation. We’ve also uploaded digital copies of many of the printed handouts distributed at the event.
Practice and encourage good digital citizenship
Do you long for more civility in social media, comment sections, and online discussions? Consider what you can do, and encourage others to be better digital citizens.
Assessment tool helps you secure systems
IT staff tasked with securing systems can now use a customized assessment tool to help them. Information Assurance (IA) has customized the Center for Internet Security Configuration Assessment Tool (CIS-CAT) for the university.
New MSetup network protected from intrusion
U-M’s network Intrusion Prevention System (IPS) now protects the recently launched MSetup wireless network from malicious internet traffic.
Does GDPR apply to your data? A new toolkit can help
A toolkit is now available to help your unit comply with the General Data Protection Regulation (GDPR), which went into effect in May.
IT security and privacy: Keeping you and the U safe
As U-M gets ready for Winter Break, remember that cyber attackers never take time off. The university takes measures to protect the institution’s data and systems no matter the time of the year.
Cryptocurrency mining risks and U-M restrictions
You may not use U-M resources—computers, networks, electricity—for cryptocurrency mining. Such use violates university policy and puts U-M services and data, and your personal accounts and devices, at risk. The Responsible Use of Information Resources (SPG 601.07) policy states that U-M resources may not be used “for personal commercial purposes or for personal financial or other gain.” The… Read More »
Protecting medical devices from cybersecurity threats
Medical devices capable of transmitting health information and connecting to Michigan Medicine’s networks offer improvements to the effective delivery of patient care, but they also may introduce privacy and security concerns. Michigan Medicine’s Information Assurance (IA) program has been raising awareness of these concerns and developing new approaches to address these vulnerabilities. As a major step, Michigan Medicine… Read More »
IA Chrome extension protecting LSA
About 2,100 managed systems in the College of Literature, Science, and the Arts (LSA) now have extra protection from malicious websites thanks to the Safe Computing Website Checker developed by Information Assurance (IA). The extension protects people from some types of malicious websites when browsing the web with Chrome. “Utilizing Group Policy Management (GPO) we have deployed this… Read More »
Only store sensitive data in approved services—check the guide!
Do you work with sensitive data? Any time you are thinking about using a storage or collaboration service for sensitive university data—whether in the cloud or at U-M: Check the Sensitive Data Guide first to see which services are approved for your data type. If the service you want to use is not listed in the guide, ask… Read More »
Check links on your smartphone before tapping
You know about hovering over links in email with your mouse to see the destination URL before clicking. But what do you do on your smartphone or tablet where you don’t have a mouse or trackpad? How do you tell where the link will take you? Press the link and hold down till a dialog box appears. The… Read More »
Did you miss SUMIT 2018? Watch the recorded sessions now
The 14th annual Security at University of Michigan IT (SUMIT) was held on October 25, 2018. Videos and photos of all SUMIT_2018 presentations are now available.
Students show security know-how and win prizes
For the past 14 years, Information Assurance (IA) has engaged UM-Ann Arbor students, including medical students, with an online quiz designed to raise awareness about IT security issues and promote good IT security practices. This year’s quiz resulted in the second highest completion rate yet! From October 29 through November 2 a total of 7281 students participated. This… Read More »
SUMIT 2018 focuses on U-M’s role as a leader in security and privacy research
More than 429 people attended SUMIT 2018 either in person at Rackham Auditorium or virtually via the live stream throughout the day. These individuals represented more than 170 colleges, universities, corporations, small businesses, and nonprofits from around the country.
ITS begins work on CUI proof of concept
The University of Michigan has been working on a effort to ensure that the university is compliant with the new regulations concerning the use of Controlled Unclassified Information (CUI). The next step is to develop a CUI public cloud strategy and proof of concept in AWS. That is where the ITS Cloud Infrastructure Transformation Program (CITP) technical team… Read More »
U-M Information Security policy: Revised and approved
The revised University of Michigan Information Security policy (SPG 601.27) recently was approved, along with a number of new information technology standards. The policy and accompanying standards represent the most comprehensive revision of the institution’s information security program since its inception over a decade ago. SPG 601.27 and the standards are based on a cybersecurity risk management framework that… Read More »