Information Security Services
Formerly known as Identity Finder
The Information Security Office has acquired a site license for Spirion.
What is Spirion?
Spirion is a program that assists with managing sensitive data. The program can locate Personally Identifiable Information (PII) stored on a computer, file shares, or external media. PII is defined as any data that could potentially identify a specific individual.
Any information that can be used to distinguish one person from another or could be used for de-anonymizing anonymous data is considered PII. This information includes, but is not limited to: credit card numbers, bank account numbers, social security numbers, birthdates, passwords, driver's license numbers, addresses, passport information, employee identification numbers, maiden names, etc.
Once Spirion locates such media on your computer, the software provides easy ways to manage the data. Properly managing this type of data reduces the footprint of sensitive data and minimizes the risk for identity theft.
To learn more about Spirion you can visit their website.
Multi-FACTOR AUTHENTICATION (MFA)
In an effort to increase the security on campus in light of recent high-profile data breaches, the Information Security Office is working on implementing Multi-Factor Authentication (MFA) for employee logins.
What is Multi-Factor Authentication?
Multi-Factor Authentication is a security method that greatly improves the security when users need to access a resource.
MFA is a fairly simple concept, instead of requiring just one piece of secret information, like your password, an authentication system using MFA would require few pieces of secret information to authenticate.
Most implementations of MFA follow the rule:
something you know & something you have & something you are
This usually takes the form of a password, biometrics, plus a one-time code. These one-time codes can either be sent via SMS to a trusted phone associated with the account that is being logged into, a token, or generated by an app. When a user successfully authenticates with MFA, they are proving that they know the password and they have access to the trusted phone. Attackers may even know the password, but without the one-time code they are unable to login to the account.
Spirion User Guides
Please refer to the user guides button below for instructions on how to use Spirion results.
Complete overview of identifying a phishing email.
The average employees email inbox has become the battlegrounds for most cyberattacks. PhishMe is a product that allows organizations to launch mock phishing attacks against their own employees in order to demonstrate the danger of phishing attacks. Employees who are caught by the fake attack are able to access resources on how best to prevent falling for the attack in the future. more to come....
Lost & Found
Please call the University Police at (657) 278-4308 to inquire if your lost property has been turned into the police department or you can fill out the Lost Property Inquiry form online.
University Police Department front counter personnel will respond by email regarding the status of your lost property inquiry.
Lost and Found property is stored for only six months. If the item you lost was issued by IT at CSUF, please indicate on the lost property form with the complete details about the stored data and the type of data that was lost with the device. The stored data on the device and the device's access to our network, is more valuable than the device itself. Having a strong password on your device, may lower the risk of a security breach.
To report stolen property, please call the University Police non-emergency phone line at (657) 278-2515.