If you use your personal devices—smartphone, laptop, tablet, and so on—for work, you are responsible for appropriately managing and securing them, as well as for meeting the obligations described in Security of Personally Owned Devices that Access or Maintain Sensitive Institutional Data (SPG 601.33). Your unit may have additional restrictions beyond those found in the SPG. Check with… Read More »
The IT Security Community and Michigan IT staff are invited and encouraged to attend an information session about vulnerability management and data & device disposal February 22.
Starting in January, the Information Assurance Michigan Medicine Education & Awareness Program began publishing monthly IT security awareness reminders titled “Cyber Safety — Review in 2.” The campaign’s goal is to increase awareness of key cybersecurity topics by presenting important information that can be reviewed in two minutes or less. To encourage the Michigan Medicine workforce to learn more about… Read More »
U-M Information Assurance (IA) offers tips to help you protect yourself from identity theft and tax fraud.
Miss out on Privacy@Michigan? Don’t worry, you can watch the recording and catch up on the online conversation. We’ve also uploaded digital copies of many of the printed handouts distributed at the event.
Do you long for more civility in social media, comment sections, and online discussions? Consider what you can do, and encourage others to be better digital citizens.
IT staff tasked with securing systems can now use a customized assessment tool to help them. Information Assurance (IA) has customized the Center for Internet Security Configuration Assessment Tool (CIS-CAT) for the university.
U-M’s network Intrusion Prevention System (IPS) now protects the recently launched MSetup wireless network from malicious internet traffic.
A toolkit is now available to help your unit comply with the General Data Protection Regulation (GDPR), which went into effect in May.
As U-M gets ready for Winter Break, remember that cyber attackers never take time off. The university takes measures to protect the institution’s data and systems no matter the time of the year.
You may not use U-M resources—computers, networks, electricity—for cryptocurrency mining. Such use violates university policy and puts U-M services and data, and your personal accounts and devices, at risk. The Responsible Use of Information Resources (SPG 601.07) policy states that U-M resources may not be used “for personal commercial purposes or for personal financial or other gain.” The… Read More »
Medical devices capable of transmitting health information and connecting to Michigan Medicine’s networks offer improvements to the effective delivery of patient care, but they also may introduce privacy and security concerns. Michigan Medicine’s Information Assurance (IA) program has been raising awareness of these concerns and developing new approaches to address these vulnerabilities. As a major step, Michigan Medicine… Read More »
About 2,100 managed systems in the College of Literature, Science, and the Arts (LSA) now have extra protection from malicious websites thanks to the Safe Computing Website Checker developed by Information Assurance (IA). The extension protects people from some types of malicious websites when browsing the web with Chrome. “Utilizing Group Policy Management (GPO) we have deployed this… Read More »
Do you work with sensitive data? Any time you are thinking about using a storage or collaboration service for sensitive university data—whether in the cloud or at U-M: Check the Sensitive Data Guide first to see which services are approved for your data type. If the service you want to use is not listed in the guide, ask… Read More »
You know about hovering over links in email with your mouse to see the destination URL before clicking. But what do you do on your smartphone or tablet where you don’t have a mouse or trackpad? How do you tell where the link will take you? Press the link and hold down till a dialog box appears. The… Read More »
The 14th annual Security at University of Michigan IT (SUMIT) was held on October 25, 2018. Videos and photos of all SUMIT_2018 presentations are now available.
For the past 14 years, Information Assurance (IA) has engaged UM-Ann Arbor students, including medical students, with an online quiz designed to raise awareness about IT security issues and promote good IT security practices. This year’s quiz resulted in the second highest completion rate yet! From October 29 through November 2 a total of 7281 students participated. This… Read More »
More than 429 people attended SUMIT 2018 either in person at Rackham Auditorium or virtually via the live stream throughout the day. These individuals represented more than 170 colleges, universities, corporations, small businesses, and nonprofits from around the country.
The University of Michigan has been working on a effort to ensure that the university is compliant with the new regulations concerning the use of Controlled Unclassified Information (CUI). The next step is to develop a CUI public cloud strategy and proof of concept in AWS. That is where the ITS Cloud Infrastructure Transformation Program (CITP) technical team… Read More »
The revised University of Michigan Information Security policy (SPG 601.27) recently was approved, along with a number of new information technology standards. The policy and accompanying standards represent the most comprehensive revision of the institution’s information security program since its inception over a decade ago. SPG 601.27 and the standards are based on a cybersecurity risk management framework that… Read More »