Skip to Content

University Technology Services


Information Technology Security

Announcements

Check this page often for announcements, security advisories, news, updates, and more from the information security team.

 

a

Multifactor Authentication Required Beginning June 5, 2017

Beginning June 5, 2017, multifactor authentication (MFA), also known as two-step verification, will be required to access systems on the USC network that store Personally Identifiable Information (PII). MFA will require students, faculty, and staff to take an extra step each time they login to university systems that store PII including my.sc.edu, Banner, PeopleSoft, VIP, and more. Each year, more than 1,000 university accounts are compromised. Several of our peer universities have seen unauthorized payroll direct deposit changes and IRA tax fraud incidents due to theft of university credentials. MFA adds a layered defense to make it more difficult for someone to access sensitive data. Beginning June 5, the university will use DUO Security for MFA. You probably have used some form of MFA with your financial institution or credit card company. As with many financial institutions, you will be required to use something you know (password) with something you have – text message, call to landline, or token. To prepare for this new requirement, please complete the enrollment process now. Instructions and frequently asked questions can be found here.  MFA is important to protect your information, as well as the information of thousands of others across the university system. It is also a new requirement of state agencies based on IT Security Requirementsthat were implemented following the 2012 South Carolina Department of Revenue security breach.  If you have questions, please contact the Service Desk at (803) 777-1800 or submit a self-service ticket. We are confident that these new security measures will better protect our university. 

success

Success Story: 4 Tips To Deploy Spirion and FireEye HX

Recently, the UISO sat down with Douglas Cogdell at the College of Hospitality, Retail and Sport Management. We asked Doug if he could share a few tips and lessons he learned installing Spirion and FireEye HX. In this post, Doug offers 4 excellent tips that we are sure will help others.

Deadline

Dec 1, 2017 Security Deadline Established

Important Security Announcement - Dec 1st Security Deadline Spirion (formerly Identity Finder) and FireEye HX are two software clients required by the University’s Minimum Security Standards.  Organizational units are required to install these clients on or before December 1, 2017.

The Human Face of Big Data

The Human Face of Big Data

September 16, 2016 - The university has licensed streaming on-campus access to the documentary The Human Face of Big Data. "With the rapid emergence of digital devices, an unstoppable, invisible force is changing human lives in ways from the microscopic to the gargantuan: Big Data, a word that was barely used a few years ago but now governs the day for many of us from the moment we awaken to the extinguishing of the final late-evening light bulb. This massive gathering and analyzing of data in real time is allowing us to not only address some of humanity biggest challenges but is also helping create a new kind of planetary nervous system. Yet as Edward Snowden and the release of the Prism documents have shown, the accessibility of all these data comes at a steep price. The Human Face of Big Data captures the promise and peril of this extraordinary knowledge revolution."  --IMDb

Identity Finder

Identity Finder Made Available

April 18, 2016 - The university has licensed the Identity Finder software for enterprise and home use for all faculty and staff in the eight-campus system.  Identity Finder is a tool that scans all files stored on a PC, Mac or Linux to identify Personally Identifiable Information (PII).  Once the scan has completed, the user is alerted if PII is found, and the user has the option to securely delete or further protect the data.  

a

YubiKey Self Registration Now Available for Duo Multifactor

December 16, 2015 - Users who utilize Duo Multifactor to authenticate into university IT systems can now self-register YubiKey devices in my.sc.edu without the need for a service ticket.  This change expedites the registration process for users and system administrators across the state. Click to read more.

List Thumbnail

Alignment with state Information Security and Privacy Standards

October 1, 2015 - We've been hard at work updating our resources to reflect the state's Information Security and Privacy Standards which you can read about here. The requirements were last updated in September 2015 and will be effective July 2016. We've created a companion document that clarifies responsibility for implementation and offers a starting point for most of the individual controls, found here. Click to read more.