Presentation is loading. Please wait.

Presentation is loading. Please wait.

Joel Garmon, Director, Information Security Mike Rollins, Security Architect Jeff Teague, Security Analyst, Senior 1

Published byGertrude Horn Modified over 8 years ago

Similar presentations

Presentation on theme: "Joel Garmon, Director, Information Security Mike Rollins, Security Architect Jeff Teague, Security Analyst, Senior 1"— Presentation transcript:

1 Joel Garmon, Director, Information Security Mike Rollins, Security Architect Jeff Teague, Security Analyst, Senior 1 infosec@wfu.edu http://infosec.wfu.edu/

2 Work together as a team to ensure protection of computer systems and data University-wide (using technology, policies and procedures). 2 infosec@wfu.edu http://infosec.wfu.edu/ Director of Information Security reports to Information Systems CIO and General Counsel in Legal Department.

3 At least 6 characters. At least 1 number. Do not reuse old passwords. Change password every 6 months. 3 infosec@wfu.edu http://infosec.wfu.edu/

4 The fraudulent practice of sending emails purporting to be from legitimate companies in order to induce individuals to reveal personal information. NEVER SEND YOUR PASSWORD OR ANY PERSONAL INFORMATION THROUGH EMAIL TO ANYONE. Wake Forest University will never ask you to provide personal information, such as your social security number or passwords, via email message. 4 infosec@wfu.edu http://infosec.wfu.edu/

5 http://www.microsoft.com/security/online-privacy/phishing-symptoms.aspx 5 infosec@wfu.edu http://infosec.wfu.edu/

6 --------- Forwarded message ---------- From: Wake Forest University Date: Tue, Apr 17, 2012 at 8:09 AM Subject: New Secure Message Regarding Your Wake Forest University To:customerservice@wfu.edu New Important Security Message Alert! Log In in order to resolve the problem. Click to log in. 6 infosec@wfu.edu http://infosec.wfu.edu/

7 Do not use peer-to-peer sharing applications, such as BitTorrent. If you have questions about use of video or music, please contact ZSR Library for guidance. 7 infosec@wfu.edu http://infosec.wfu.edu/

8 WinZip can be used to encrypt attachments to emails. Confirm recipient's email address is correct. Email encryption password in separate email. If unsure of confidentiality of data, be conservative and encrypt attachment files. 8 infosec@wfu.edu http://infosec.wfu.edu/

9 WFU IS department will encrypt staff laptops. Smart phones that receive WFU email must be passcode protected. USB flash drives can be encrypted. Consult the following web site for examples of USB flash drives that support encryption. http://infosec.wfu.edu/ Consult IT support person in your area or any member of security team for questions. 9 infosec@wfu.edu http://infosec.wfu.edu/

10 Use the Virtual Private Network (VPN) software to connect to the WFU network. Consult the following web site for information: http://help.wfu.edu/techguide/vpn Ensure that your home computer is up to date regarding operating system patches, and antivirus patches. Ensure that data is secure appropriately on USB drive as the data is being transported home. 10 infosec@wfu.edu http://infosec.wfu.edu/

11 Physical Controls –  Use lock down cable connected to laptop or desktop.  Do not leave laptop visible in car.  Do not leave unattended laptop in meeting rooms, library tables or classrooms. Logical Controls –  Enable password protected screen savers.  Do not post passwords on desk, on wall, or anywhere visible to others.  Do not share passwords with others. 11 infosec@wfu.edu http://infosec.wfu.edu/

12 Social Security Number Credit Card Information Bank Information Student Records Drivers License Information 12 infosec@wfu.edu http://infosec.wfu.edu/

13 Any employee that works with NPI could potentially be aware of a breach. More importantly, employees aware of a breach must contact IS Security. Security breaches can affect many people. For example, Norte Dame had a breach of credit card data in 2006 as well as an employee record data breach in 2009. The affects were as follows: 24,000 employees affected by 2009 breach, personal information exposed on the Internet, and Notre Dame worked to minimize future threats. Notre Dame’s overall cost to mitigate 2006 PCI breach was a one time $4.6M fee and $630K recurring. http://www.ndsmcobserver.com/ WFU’s reputation would be majorly affected as well as having to pay financial penalties. 13 infosec@wfu.edu http://infosec.wfu.edu/

14 Bridge at ZSR Library http://help.wfu.edu 758-4357 infosec@wfu.edu Joel Garmon, Director, Information Security Mike Rollins, Security Architect Jeffrey Teague, Security Analyst, Senior 14 infosec@wfu.edu http://infosec.wfu.edu/

15 15 infosec@wfu.edu http://infosec.wfu.edu/

Download ppt "Joel Garmon, Director, Information Security Mike Rollins, Security Architect Jeff Teague, Security Analyst, Senior 1"

Similar presentations

Financial Services Workshop Margaret Umphrey ECU Information Security Officer March 12, 2014 1IT Security, East Carolina University.

Financial Services Workshop Margaret Umphrey ECU Information Security Officer March 12, IT Security, East Carolina University.
ANNUAL SECURITY AWARENESS TRAINING – 2011 UMW Information Technology Security Program Annual Security Awareness Training for UMW Faculty and Staff.

ANNUAL SECURITY AWARENESS TRAINING – 2011 UMW Information Technology Security Program Annual Security Awareness Training for UMW Faculty and Staff.
HIPAA Security.

HIPAA Security.
Computer and Mobile Device Equipment Security Brief May 29, 2008 Presented by: Kevin G. Sutton, Chief, Information Technology Unit.

Computer and Mobile Device Equipment Security Brief May 29, 2008 Presented by: Kevin G. Sutton, Chief, Information Technology Unit.
Welcome to the SPH Information Security Learning Module.

Welcome to the SPH Information Security Learning Module.
Copyright © 2012, Big I Advantage®, Inc., and Swiss Re Corporate Solutions. All rights reserved. (Ed. 08/12 -1) E&O RISK MANAGEMENT: MEETING THE CHALLENGE.

Copyright © 2012, Big I Advantage®, Inc., and Swiss Re Corporate Solutions. All rights reserved. (Ed. 08/12 -1) E&O RISK MANAGEMENT: MEETING THE CHALLENGE.
Helping our customers keep their computers safe.  Using your pet’s, business, family, friend’s names  Using number or letter sequences (0123, abcd)

Helping our customers keep their computers safe.  Using your pet’s, business, family, friend’s names  Using number or letter sequences (0123, abcd)
Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 25 & 27 November 2013.

Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 25 & 27 November 2013.
BE CYBER SAFE Office of Information Technology Information Security Department 2011-2012 1 Security Awareness Top Security Issues.

BE CYBER SAFE Office of Information Technology Information Security Department Security Awareness Top Security Issues.
For further information computersecurity.wlu.ca

For further information computersecurity.wlu.ca
C USTOMER CREDIT CARD AND DEBIT CARD SECURITY (PCI – DSS COMPLIANCE) What is PCI – DSS Compliance and Who needs to do this?

C USTOMER CREDIT CARD AND DEBIT CARD SECURITY (PCI – DSS COMPLIANCE) What is PCI – DSS Compliance and Who needs to do this?
SAFEGUARDING DHS CLIENT DATA PART 2 SAFEGUARDING PHI AND HIPAA Safeguards must: Protect PHI from accidental or intentional unauthorized use/disclosure.

SAFEGUARDING DHS CLIENT DATA PART 2 SAFEGUARDING PHI AND HIPAA Safeguards must: Protect PHI from accidental or intentional unauthorized use/disclosure.
Guide to Massachusetts Data Privacy Laws & Steps you can take towards Compliance.

Guide to Massachusetts Data Privacy Laws & Steps you can take towards Compliance.
8 Mistakes That Expose You to Online Fraud to Online Fraud.

8 Mistakes That Expose You to Online Fraud to Online Fraud.
Security Awareness Lloyd Guyot – Steelcase Ed Jaros – Tenundra Inc. July 17, 2003.

Security Awareness Lloyd Guyot – Steelcase Ed Jaros – Tenundra Inc. July 17, 2003.
Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.

Online Banking Fraud Prevention Recommendations and Best Practices This document provides you with fraud prevention best practices that every employee.
Information Security Awareness:

Information Security Awareness:
Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 18, 20 & 25 March 2015.

Personal Data Protection and Security Measures Justin Law IT Services - Information Security Team 18, 20 & 25 March 2015.
Data Security Issues in IR Eileen Driscoll Institutional Planning and Research Cornell University

Data Security Issues in IR Eileen Driscoll Institutional Planning and Research Cornell University
DATA SECURITY Social Security Numbers, Credit Card Numbers, Bank Account Numbers, Personal Health Information, Student and/or Staff Personal Information,

DATA SECURITY Social Security Numbers, Credit Card Numbers, Bank Account Numbers, Personal Health Information, Student and/or Staff Personal Information,

Similar presentations

Ads by Google