Services that provide a secure computing environment for end users. Includes network security, system security, application security, etc.
Two-step login adds a second layer of security to your online accounts. Verifying your identity using a second factor prevents anyone but you from logging in, even if they know your password. The campus utilizes DUO's Two-step login mechanisms to allow secure access to campus resources.
CIS (Center for Internet Security) is a nonprofit organization focused on enhancing cyber security for both the private and public sector through collaboration. They have provided a security benchmarking tool which our team highly recommends.Using this tool, you can discover potential vulnerabilities in your systems before they escalate into more severe problems.
The Campus runs a Next Generation Firewall (NGFW) to detect and protect against incoming attacks. It is also used to define secure network zones for portions of the network and prevent access to websites known to be malicious or infected.The Campus' Next Generation Firewall (NGFW) is also used to define secure network zones for portions of the network and prevent access to websites known to be malicious or infected.
To complement the campus’ Next Generation Firewall (NGFW), SBU has contracted with a managed security services provider (MSSP) for 24/7 network intrusion detection, system log collection and alerting. Based on the information provided, DoIT Information Security and other technology partners respond accordingly.
Review tip sheets and guides for specific audiences within our campus. They are designed to tell you what you need to know, in a concise format.
Our team is constantly keeping up to date on new cyber threats through a variety of communication channels. We also leverage the collective knowledge of our IT Partners, DoIT staff, managed security software provider (MSSP) and overall activity on our network to analyze threats and trends unique to Stony Brook University’s environment.
The campus provides Symantec Endpoint Protection as an antivirus solution for all faculty, staff and student computers, including Windows, Mac and Linux. Install it today!
A vulnerability scanner is a computer program designed to assess computers, computer systems, networks or applications for weaknesses. Our team runs a commercial vulnerability scanner that scans our server environment for vulnerabilities on a regular basis. This enables system administrators to review the need for additional patching or configuration.
On an ongoing basis, our team scans the Stony Brook network to check for connected devices and identify what services they are running. This activity primarily comes from an Information Security IP Address. After confirming it is friendly traffic, if you run a firewall or see this activity appear in your logs, you can safely whitelist it.