Archive for October 2020

Monthly Bulletin - October 2020

by in ,

Below please find a summary of activities & accomplishments for the department of Information Technology Services over the past month.

User Services

* Between May and October several User Services employees were reassigned work in other areas of IT to bolster efforts in Security and Project Management.  Current staff members covering User Services tasks and daily operations for the campus are:
    * Dawn Canfield
    * Alfredo Duenas
    * Omar Hernandez
    * Hai Le
    * Chris Murphy
    * Bill Ochs
    * Indy Valencia 

* Coordinated “best practices” demo of Service Now with UCLA.  16 CSUCI IT members attended.
* Presented ITS as part of the New Employee Orientation event hosted by HR
* Submitted the ATI Procurement Report
* Contributed to the Academic Lab Techs group meeting led by Phil Hampton
* Created new analysis reports for Extended University charge-back and promoted mechanism for recording labor charges for EU tickets
* Completed 219 work orders 

 

Application Services

* Development, Testing, Quality Assurance, and Move to Production completed or scheduled during October 2020:
* PMB Interface  - Retrofit Move to Production
* Canvas Interface – Retrofit Move to Production
* Appsain ERP Firewall – User Acceptance Testing and Quality Assurance
* EAB Enhancements – Unit Testing of Image and Note Uploads, Principal Development of Phone Number Additions 
* Transition of Web Applications from Freevo to .Net Core - Principle Development Continues
* Santa Rosa Island Web Application – Principle Development Continues
* Database Scripts for the following areas were developed and deployed during October 2020:
* Student Records (1) – Term Table
* Admissions (5) – Checklist Due Date, Basis of Admission, California Schools
* Mandated CI Records and CI Personnel PeopleTools 8.57 Upgrades Completed.
* Work Began on mandated CHRS Recruiting Project
* The Following Maintenance was performed:
* Non-Baseline Posting Veteran Benefits Modification was migrated to CI Records Test
* Non-Baseline Posting Multi-Factor Admissions Score (MFAS) was migrated to CI Records Test
* CHRS Recruiting PageUP Interfaces were installed in CI Personnel Test
* Maintenance Pack 13.00 installed in CI Records and CI Personnel Test
* Maintenance Pack 13.01 were installed in CI Records Test
* The Following Data Warehouse and Institutional Reporting Activity took place during October 2020:
* CFS Data Warehouse Integration with OneCI Data Warehouse Continues
* Data warehouse operational work for BFA, Student Affairs, Advancement and Academic Affairs 
* Application Services continued supporting the following operations and projects:
* CFS MP4.0 and AP Check Printer Template Coordination for BFA 
* CSU CMS - AWS Hybrid Cloud Project 
* Student Financials Fee Configuration
* Identity and Access Management Support
* CFS Related Support of BFA Operations 

 

Infrastructure

* Assisted with troubleshooting/diagnosis on campus fire alarm system
* Preparation for release of new version of Global Protect VPN client
* Upgraded software on campus firewallS
* Ongoing work on campus EPE (Emergency Preparedness Enhancements) [formerly SAFE] project – camera installs and prep
* Work with CAPS director on phone services and reporting
* Ongoing work on campus wifi refresh and potential parking lot wifi project
* Infrastructure prep and consultation on Police Dept. NextGen 911 upgrade
* Connected Dropbox and Gsuite to Microsoft’s CASB suite for cloud app security. This allows us to see malware that could be found on the platforms as well as other things like failed authentications and impossible travel. 
* Received our Student A3 licenses from SHI / Microsoft. Have only been manually assigning them to students who need access to certain O365 features.
* Ongoing transition of duties for retiring member 

 

Information Security

* In support of National Cybersecurity Awareness Month, Carlos Miranda coordinated and moderated the Professional Development webinar – “Smart Home - Do you have any of the following smart devices? Cameras, doorbells, smoke detectors, and other internet-enabled devices?” 
* Information Security created a webpage for National Cybersecurity Awareness Month / https://www.csuci.edu/its/security/cybersecurity-awareness.htm
* Met with various Anti-Virus vendors for replacement of Malwarebytes (Carbon Black, Sophos, Bitdefender, ESET)
* All 8 of the 9 Information Security Audit observations have been submitted and recommended for acceptance by CO Audit.  
* Continued work with ITS colleagues on various cross-department projects related to remote device patch management.
* Continued Monthly/Quarterly internal auditing 


Beware of Email Spoofing Attacks

by 1

Email spoofing is a type of email scam in which the sender uses a falsified name or email address to fool recipients into thinking that the email is legitimate. Spoofed emails may be designed to appear to be from colleagues, friends, or family members in order to accomplish malicious goals. By impersonating a target’s known contacts, the scammer seeks to gain the target’s trust with the goal of obtaining sensitive information, propagating malware, or extorting funds. 

If an email originates from an address outside of the CSUCI domain, the following banner will appear at the top of the message’s body. This warning banner will appear in Webmail as well as the Outlook desktop and mobile applications. 

 

Outlook Caution Banner

If you receive an email from a colleague containing this banner, it is advised to check with the sender at a known email address by phone, or via Teams to confirm that the email legitimately came from them. 

 

Beware the Signs of Spoofing Attacks: 

There are several warning signs that an email may be a spoofed message, such as emails requesting personal financial information, emails requesting the transfer of funds in the form of gift cards, and emails sent from email addresses mimicking the CSUCI domain (such as employee.name.CSUCI@gmail.com). 

 

Spoofing emails may also contain links to false login pages that harvest users' credentials. To avoid falling victim to harvesting links, hover over hyperlinks (or tap and hold on mobile devices) in email messages to display the real Web address that they lead to. If the real address does not appear to be legitimate,  

If you suspect that you have received a phishing or spoofing email, it is advised to forward the email to the Information Security Team at infosec@csuci.edu. Through continued vigilance, you can help to create a more secure workplace. 
 

Did you know that October is Cybersecurity Awareness Month? For additional cybersecurity tips, please refer to https://staysafeonline.org/cybersecurity-awareness-month/about-the-month/. 

November 2nd - Palo Alto GlobalProtect Update

by 1

Beginning November 2nd, 2020, ITS will begin using an updated version of Palo Alto GlobalProtect. Users will be prompted to download and install the updated version upon connecting. The updated version of GlobalProtect will also be available at https://vpn.csuci.edu, Software Center for Windows computers, and Self Service for Mac computers.


If you have any questions, please submit a new ITS Service Request.

It's National CyberSecurity Awareness Month - Come Celebrate with Us!

by in , , , , , 1

October is National CyberSecurity Awareness Month!

In support of this annual cybersecurity event, ITS Information Security in concert with Professional Development will be hosting a webinar on Thursday, October, 22 from 10:00am – 11:00am titled “BeCyberSmart | Securing your “Smart” Home”. 

Follow this link for additional information about this event including how to sign up please.   We encourage you to share this awareness opportunity with all of your staff. 

Thank you

ITS Information Security

Celebrate CyberSecyruity Awareness Month.  Do Your Part, be #BeCyberSmart.

 

 

 

Zoom 5.3.1 update now available!

by

Zoom regularly provides new versions of the Zoom desktop client and mobile app to release new features and fix bugs. We recommend upgrading to the latest version once it is available.  


This update can be made by users independently but if assistance is needed, please feel free to submit an ITS Service Request.

Dropbox Users must switch from IE

by in , 1

A brief reminder that users can no longer use IE for accessing Dropbox.