Bastion hosts are gateways between internal and external networks. They help defend the internal network against attacks. The campus Bastion Host Service works by restricting access, among individuals outside the Data Center network, to Unix and Windows systems housed in the Data Center.
Cloudflare, Inc. is a U.S. company that provides content deliver network services, DDoS mitigation, Internet security and distributed domain name server services, sitting between the visitor and the Cloudflare user's hosting provider, acting as a reverse proxy for websites.
Duo is a multi-factor authentication system that will make it much harder for hackers to access your UC Davis accounts. Even if someone has stolen your passphrase, they will need a “second factor” — in most cases a temporary numeric code, to access your account.
File Integrity Monitoring (FIM) delivers risk visibility, business context and security business intelligence enabling enterprises to protect sensitive data and assets from breaches, vulnerabilities, and threats through a portfolio of high priority security controls.
IET offers a turnkey Firewall as a Service (FaaS) that provides all necessary support to a department needing to protect network attached resources utilizing a VLAN firewall. IET provides this FaaS out of the Data Center to help departments secure their networks and to ensure compliance with campus and UCOP security policies. Network security is governed by UCOP policy IS-3 and sets forth policies that departments must follow for network security.
The Information Security team helps the campus and IET through training and consulting on security incidents. After a severe incident, the team will help prevent further damage to the campus by working with the departments and any outside support (such as the police) to remediate the incident, thus staying compliant with laws and regulations.
The best way to achieve a significant and lasting improvement in information security is not to throw more technical solutions at a problem--the best approach is to teach the basics of information security to everyone who interacts with computer networks, systems, and information.
Our responses to cyber-security threats sometimes require UC Davis to work with outside law enforcement agencies, such as the FBI. IET's Information Security team is ideally situated to help those agencies, because it works closely with both central IET and campus IT leads, and has access to information that can help offer a university-wide perspective.
This service is primarily for Campus Counsel, so it can leverage the UC Davis Information Security Team’s expertise to perform e-discovery and collect information in a sound manner. However, campus IT support and administrative units can use this service for the same reasons. The Information Security team can also assist communications between departments and other groups such as Campus Counsel, FBI, and local law enforcement.