SecureUVA Projects & Initiatives
Information Security and Information Technology Services (ITS) has wrapped up a multi-year effort to implement solutions for thwarting malicious activities. You can see a list of the projects associated with this effort by scrolling below. Some of these projects have moved into new phases and/or ongoing production implementations.
Project |
Goal |
---|---|
Anti-Phishing Awareness | Lower the risk of users falling for phishing messages by providing more user education and awareness. |
2-Step Login | 2-Step Login adds an additional security layer and protects user identity when logging in to our systems. Users will log in through NetBadge, and then confirm their identity via a mobile app, phone callback, mobile password, SMS passcode, or hardware key. |
DNS Firewall |
ITS' DNS servers utilize the DNS firewall in order to block access to malicious domains. |
Academic Protected Network |
A new academic network segmentation that will provide a higher level of network security for the default wired network service in academic buildings. |
Managed Security Services | The Managed Security Services project will provide 24/7 security incident monitoring and protective aspects for both ITS owned and managed IT infrastructure identified as tier 0 and upper tier 1 resources. The project will enable outsourced monitoring as an additional layer of security protection. |
SecureUVA Products and Services | Phase 2 of Managed Security Services, the goal of the project is to create a detailed process and procedure to allow external schools/units to utilize the additional protection provided by this service. |
IT Security & Policy Updates | Review, revise, add, and remove Information Security and Information Security policies. Promote the new policies through the appropriate channels. |
IT Risk Management System |
Improve the overall Information Technology Risk Management process through efficient data collection and analysis across the departments and University. |
Vulnerability & Patch Management |
Provide vulnerability and patch management systems that constantly scan the entire University network and identifies operating system and application vulnerabilities. |
Secure Workstations |
Allow users to access a "clean" computing environment to accomplish restricted tasks or have access to restricted data. |
Email Security | Implement a new email and web security gateway solution that identifies malicious email, spam, and phishing messages. |
Privileged Credential Management | Implement a password management system that will provide auditing functions like check-in/out of password, automatic password changing, and complexity rules for shared accounts. |
Certificate Refactoring | Migration from the current certificate authentication to commercial certificate authentication. Additionally, implement a new certification tool for easy deployment of certificates to wireless, VPN, and websites. Lastly, create internal tools and business processes for the revocation of certificates. |
DOS Protection | Various controls identified in the DOS mitigation strategy document including controls at the ISP, network, application, and business process levels. |
Intrusion Prevention System | Detection and protection for application level network threats to UVA network hosts. |
Data Loss Prevention Tools & Business Processes | Better identify high sensitive data on workstations, servers, mass storage devices, etc. |
Application Allowlisting | Workstation and server application allowlisting for select high priority systems. |
Workstation Antimalware | Improved workstation antimalware solution to augment existing antimalware solutions (Antivirus, etc.). |
Web Application Firewall | Strategy and solution for protecting web applications with a web application firewall. |
Network Antimalware | Improved network antimalware solution to augment protective network controls. |
Intrusion Detection Systems | Multiple intrusion detection systems to monitor networks for malicious activity or policy violations. |
Security Information & Event Management | A Security Information & Event Manager to analyze and correlate log data. |
Information Security Monitoring Infrastructure | A technical infrastructure to be used by Information Security for implementing security tools. |
Web Application Security Scanning | Better identify vulnerabilities in web applications. |
Penetration Testing | Validate existing configurations and security controls to identify gaps and develop repeatable operational practices. |
SecureUVA Incident Management System | Migrate from the current incident tracking system (OTRS) to the new ServiceNow Security Incident Response system. |
Metrics Development and Reporting | Develop strategic and operational metrics, reports, and dashboards to measure the effectiveness of the overall Security Enhancement Program. |
Annual Information Security Training | To ensure all non-student users and student employees complete UVA's Information Security Training annually. |