Secure Computing
Services that provide a secure computing environment for end users. Includes network security, system security, application security, etc.
LastPass
LastPass is a password management service that allows you to create, store, and safely
share unique and secure passwords for all of your accounts. Stony Brook University
offer two versions - LastPass Enterprise for use at work by faculty and staff, and
LastPass Premium for storage of personal passwords, free to all students, faculty,
and staff.
For Personal Use: Create a LastPass Premium Account
For Enterprise Use: Request a LastPass Enterprise Account
Two-Step Login
Two-step login adds a second layer of security to your online accounts. Verifying your identity using a second factor prevents anyone but you from logging in, even if they know your password. The campus utilizes DUO's Two-step login mechanisms to allow secure access to campus resources.
System Hardening
CIS (Center for Internet Security) is a nonprofit organization focused on enhancing cyber security for both the private and public sector through collaboration. They have provided a security benchmarking tool which our team highly recommends.Using this tool, you can discover potential vulnerabilities in your systems before they escalate into more severe problems.
Learn More About System Hardening
Network Security & Monitoring
The Campus runs a Next Generation Firewall (NGFW) to detect and protect against incoming attacks. It is also used to define secure network zones for portions of the network and prevent access to websites known to be malicious or infected.The Campus' Next Generation Firewall (NGFW) is also used to define secure network zones for portions of the network and prevent access to websites known to be malicious or infected.
To complement the campus’ Next Generation Firewall (NGFW), SBU has contracted with a managed security services provider (MSSP) for 24/7 network intrusion detection, system log collection and alerting. Based on the information provided, DoIT Information Security and other technology partners respond accordingly.
Guides
Review tip sheets and guides for specific audiences within our campus. They are designed to tell you what you need to know, in a concise format.
Threat Management
Our team is constantly keeping up to date on new cyber threats through a variety of communication channels. We also leverage the collective knowledge of our IT Partners, DoIT staff, managed security software provider (MSSP) and overall activity on our network to analyze threats and trends unique to Stony Brook University’s environment.
Vulnerability Scanning
A vulnerability scanner is a computer program designed to assess computers, computer systems, networks or applications for weaknesses. Our team runs a commercial vulnerability scanner that scans our server environment for vulnerabilities on a regular basis. This enables system administrators to review the need for additional patching or configuration.
Port Scanning
On an ongoing basis, our team scans the Stony Brook network to check for connected devices and identify what services they are running. This activity primarily comes from an Information Security IP Address. After confirming it is friendly traffic, if you run a firewall or see this activity appear in your logs, you can safely whitelist it.