UC President Drake has notified all UC locations and outlined requirements for updated information security investment plans. These plans are integral to protecting UC’s information and systems and have specific goals and expectations, as listed below.
UC Berkeley is poised to meet these requirements via these six projects:
"Ensure cyber security awareness training for 100 percent of location employees."
"Ensure timely cyber escalation of incidents in alignment with UC Incident response and cybersecurity escalation standards." (CalNet Login required)
"Ensure identification, tracking, and vulnerability management of all computing devices connected to university networks." (Page coming soon.)
"Deploy and manage UC-approved Endpoint Detection and Response (EDR) software on 100 percent of assets defined by UC EDR deployment standards."
"Deploy, enable, and configure multi-factor authentication (MFA) on 100 percent of campus and health email systems in conformance with established UC MFA configuration standards."
"Deploy and configure a robust DLP solution for all health email systems to mitigate unauthorized data exfiltration." (Page coming soon.)