Information Technology

Cyber Defense

Our Mission

The Augusta University Cyber Defense Team's number one mission is to make sure all Augusta University data and devices are kept safe and protected. To keep our cyber community safe you have to do your part in keeping yourself protected. This page will provide you with the necessary tools and information you need to stay cyber safe. 

72CYBER

 Give us a call at (706) 722- 9237

72CYBER@augusta.edu

 Send us an email or forward an attachment of a suspicious email to 72CYBER@augusta.edu

WHEN TO CALL 72CYBER

  • Lost or Stolen AU Credentials 
  • Lost or stolen device with access to AU systems 
  • Computer or device acting strange 
  • If you suspect malware  

 WHEN TO EMAIL 72CYBER@AUGUSTA.EDU

  • Clicked on something suspicious
  • Received strange text on AU cellphone 
  • Received distrustful email 

Cyber News

cyber training
April 2020 Cybersecurity Training

April 2020 Cybersecurity Training

The mandated bi-annual Cybersecurity Training is here.

coronavirus
How to identify Coronavirus phishing emails

How to identify Coronavirus phishing emails

Learn what a COVID-19 phishing attempt might look like and the steps you need to take when you think you've received one.

be in control
Be in control of your personal data 

Be in control of your personal data 

Are you and your devices safe? After reading this you may think otherwise.

Remote Working    

 

PERSONAL DEVICES 

  • Must connect via CITRIX
  • Data is not authorized to be stored on personal devices 
  • Close all work windows before allowing others to use the device
 

AU DEVICES  

  • Must be authorized VPN connections 
  • Should use CITRIX if VPN is not required 
  • Must be encrypted prior to being moved from AU offices 
  • Leaders must maintain 100% inventory of remote devices
 

INTERNET CONNECTION 

  • Do not use unsecure internet connections (example: Starbucks, McDonald's)
  • Verify all DUO push notifications prior to approval (location)
  • Be aware of suspicious activity - immediately contact 72Cyber to report incidents 
 

EMAIL

  • Maintain business processes while remote 
  • When in doubt, verify with leadership 
  • Only use AU email accounts when communication through email format

VPN ACCESS 

* You may request VPN through your departmental Security Authority.  Additionally, VPN access requires multifactor authentication process.

Windows: Accessing Augusta University network using VPN client on  a Windows

Mac: Accessing Augusta University network using VPN client on  a Mac 

Contractors (usually on premise) requiring long term access to enterprise resources such email, IM and shared folders and application access.

  1. The sponsoring department Security Authority will first request a NetID. https://apps.augusta.edu/ords/f?p=NETID:
  2. The Security Authority submits a VPN access request for the NetID through Service Now.
  3. The request routes to the ISO for approval.
  4. Upon approval, the request is routed to Networking for fulfillment and connection instructions are provided to the requestor.

 Note: The Security Authority will need to request any additional service/application access for the new NetID through Service Now. Vendor accounts are granted access for a maximum of 180 days. The Security Authority may request reactivation of account by contacting the Service Desk. ISO approval is not required for reactivations.

Vendors requiring short term VPN access to a single system (IP address). 

  1. The sponsoring department Security Authority would need to submit a VPN access request through Service Now and attach the completed Vendor-VPN Request. (See Form Attached Below)
  2. The request routes to the ISO for approval.
  3. Upon approval, the request is routed to Technical Operations for vendor account creation.
  4. Technical operations then routes the request to Networking for fulfillment and account information and connection instructions are provided to the requestor (vendor), sponsor, and Information Security.

 Note: Vendor accounts are granted access for a maximum of 180 days. The Security Authority may request reactivation of account by contacting the Service Desk. ISO approval is not required for reactivations.

You can go to Who is my SA to find out your Security Authority. 

Only department managers may appoint the security authority and you must correct department head and number to complete Security Authority Agreement Form.

Submit a request for NetID and Application Access

 

 

DUO Two-Factor Authentication

DUO Two-Factor Authentication adds an extra layer of mandatory security to our AU systems. The Cyber Defense Team recommends that you enable DUO PUSH as your standard DUO setting.

Duo Push is an authentication request you’ll receive as a notification on your smartphone. Overall, it’s quicker, easier, more secure and could be cheaper than receiving text messages or phone calls.

It's quicker than a text or a phone call

  • Authenticating with a text message requires waiting to receive the text, reading a passcode, and then typing it in.
  • Phone calls require actually answering the phone, listening to the recording, and using the dial pad to approve the login.
  • Duo Push is as simple as approving a notification on your smartphone.

It's more secure

    • Duo Push uses cutting-edge end-to-end encryption that SMS and phone calls can’t.
    • The Duo Push screen displays detailed information about the application and source device that initiated the authentication request.

Technology Policies