5/27/2020
Sandra D. (Sandy) Lindsey, UTIA Chief Information Security Officer
While I know that some of you have already gone back to your offices, we are about to enter Phase II of the return. I just want to be sure everything is secured before going straight back to the work network. Please follow these steps to ensure the computer, the data, and you are protected.

 

1.      Before returning, please remove all unnecessary or unapproved software you may have installed while working from home.

2.      Back up your data to an external source or the cloud before you return to the office.

    a.  If you need help, you can call the OIT HelpDesk at (865) 974-9900.

3.      Run a full Windows Defender scan before returning, then again the first time you turn the computer on at the office.

   a.  Go to the system tray at the bottom right of your screen.

   b.  Click on the icon with the shield and green check.

   c.  When that window opens, you will click on Virus & threat protection, even if it says no action is needed.

   d.  Click on Scan options, click the Full scan button, then click Scan now.

4.      Run a Malwarebytes Scan before returning, then again the first time you turn the computer on at the office.

   a.  Go to the system tray at the bottom right of your screen.

   b.  Right-click on the dark blue “M” icon.

   c.  Click on Start Threat Scan.

5.      If you have any issues at all, whether it is connecting to the network or opening an app, please call the OIT HelpDesk at (865) 974-9900.

6.      If you have a computer that you left in the office and it was turned off, please do steps three and four when you first turn it on.

7.      Remember to use a disinfectant/sanitizer on the keyboard and mouse at least first thing every morning and last thing before you leave each day.

8.      If you have a “front desk” or community computer that more than one person uses, make sure you sanitize the keyboard and mouse before you touch it.

9.      In addition, please follow all guidelines at https://utk.edu/coronavirus. For Institute-specific information, please follow all guidelines at ​                  https://utia.tennessee.edu/coronavirus.

 

As I mentioned last month, I want to help you all stay informed of our policies and procedures, especially when they have been updated. Here is another updated policy. While most of the information was there, I made sure all the appropriate NIST control headings are there now.

 ​          UTIA IT0132 - Identification and Authentication Policy​

1.      Added Contractors and visiting researchers to the scope.

2.      Added the Control heading of Identification and Authentication (Organizational Users) to the appropriate section.

3.      Added group accounts to the Identification and Authentication (Organizational Users) section.

4.      Added the Control heading of Device Identification and Authentication and added content here regarding the use of the NetReg database.

5.      Added “immediately notify” to a clarify notification of when a person changes job duties or transfers to another department or campus.

6.      Updated the complexity requirements for passwords, as well as the time for changing and not changing, based on what OIT changed with 2FA.

 

Finally, if you are using Zoom, please update your client before May 30.

1.      Open the Zoom Client.

2.      Click on your profile picture.

3.      Scroll down to “check for updates” and click on it.

4.      You should have Zoom 5.0 or later.

 

Thank you so much to all of you who email  or call with questions or comments. I love hearing from you!

 

Please continue to stay safe and healthy.

 

Sandy​


​​​