SecureUVA Projects & Initiatives

Information Security and Information Technology Services (ITS) has wrapped up a multi-year effort to implement solutions for thwarting malicious activities. You can see a list of the projects associated with this effort by scrolling below. Some of these projects have moved into new phases and/or ongoing production implementations.

Project

Goal

Anti-Phishing Awareness Lower the risk of users falling for phishing messages by providing more user education and awareness.
2-Step Login 2-Step Login adds an additional security layer and protects user identity when logging in to our systems. Users will log in through NetBadge, and then confirm their identity via a mobile app, phone callback, mobile password, SMS passcode, or hardware key.

DNS Firewall

ITS' DNS servers utilize the DNS firewall in order to block access to malicious domains.

Academic Protected Network

A new academic network segmentation that will provide a higher level of network security for the default wired network service in academic buildings.

Managed Security Services The Managed Security Services project will provide 24/7 security incident monitoring and protective aspects for both ITS owned and managed IT infrastructure identified as tier 0 and upper tier 1 resources. The project will enable outsourced monitoring as an additional layer of security protection.
SecureUVA Products and Services Phase 2 of Managed Security Services, the goal of the project is to create a detailed process and procedure to allow external schools/units to utilize the additional protection provided by this service.
IT Security & Policy Updates Review, revise, add, and remove Information Security and Information Security policies. Promote the new policies through the appropriate channels.
IT Risk Management System

Improve the overall Information Technology Risk Management process through efficient data collection and analysis across the departments and University.

Vulnerability & Patch Management

Provide vulnerability and patch management systems that constantly scan the entire University network and identifies operating system and application vulnerabilities.

Secure Workstations

Allow users to access a "clean" computing environment to accomplish restricted tasks or have access to restricted data.

Email Security Implement a new email and web security gateway solution that identifies malicious email, spam, and phishing messages.
Privileged Credential Management Implement a password management system that will provide auditing functions like check-in/out of password, automatic password changing, and complexity rules for shared accounts.
Certificate Refactoring Migration from the current certificate authentication to commercial certificate authentication. Additionally, implement a new certification tool for easy deployment of certificates to wireless, VPN, and websites. Lastly, create internal tools and business processes for the revocation of certificates.
DOS Protection Various controls identified in the DOS mitigation strategy document including controls at the ISP, network, application, and business process levels.
Intrusion Prevention System Detection and protection for application level network threats to UVA network hosts.
Data Loss Prevention Tools & Business Processes Better identify high sensitive data on workstations, servers, mass storage devices, etc.
Application Allowlisting Workstation and server application allowlisting for select high priority systems.
Workstation Antimalware Improved workstation antimalware solution to augment existing antimalware solutions (Antivirus, etc.).
Web Application Firewall Strategy and solution for protecting web applications with a web application firewall.
Network Antimalware Improved network antimalware solution to augment protective network controls.
Intrusion Detection Systems Multiple intrusion detection systems to monitor networks for malicious activity or policy violations.
Security Information & Event Management A Security Information & Event Manager to analyze and correlate log data.
Information Security Monitoring Infrastructure A technical infrastructure to be used by Information Security for implementing security tools.
Web Application Security Scanning Better identify vulnerabilities in web applications.
Penetration Testing Validate existing configurations and security controls to identify gaps and develop repeatable operational practices.
SecureUVA Incident Management System Migrate from the current incident tracking system (OTRS) to the new ServiceNow Security Incident Response system.
Metrics Development and Reporting Develop strategic and operational metrics, reports, and dashboards to measure the effectiveness of the overall Security Enhancement Program.
Annual Information Security Training To ensure all non-student users and student employees complete UVA's Information Security Training annually.