Page Content

Sacramento State Information Security

The Information Security Office at Sacramento State supports the central mission of the University by assuring confidentiality, integrity and availability of its information and information systems.

Information Security Data Handling Training

When requesting access to Level 1 and 2 data procedures must be defined for ensuring the data is securely handled and destroyed prior to release of the data.   In all cases, the request should first consider use of existing secure campus data repositories and reports as an alternative to release of the data.

PCI 2011 Training

View the documents and presentation of the 2011 PCI trainings. Details here

Use of Dell Kbox at Sacramento State

One of the most common routes for hacker attacks on the privacy of our information is through desktop and laptop computers lacking in the latest software security patches. Another primary route for attack is when changes are made to a computer’s configuration (e.g. software additions or upgrades). In order to protect the campus from compromise of our computer systems and information, all campus computers and servers will thus receive software updates by no later than the end of spring semester to ensure they are always current with the latest security patches and malware protection, Read the full article here

Risk Management

The Information Security Office manages the Information Security Risk Assessment process on campus.   The Truarx assessment tool is also used to inventory all servers, network gear, data centers, and physical locations of level 1 and level 2 data.  Maintaining a current inventory of these critical assets is important to ensure the appropriate controls are implemented and managed.  Please update the Information Security Office of any addition, changes or removal of this assets.

Web Application Scanner

The Information Security Office has purchased a web application scanner to help developers and system owners find possible vulnerabilities on their web applications. This web scanner performs a through scan as well as penetration testing. If you wish to schedule a scan of your application, please see the web scanner request site.

Close to Home Article.

Hacked: Data breach costly for Ohio State, victims of compromised info Breach affects 760,000 people, expected to cost university $4 million.  Read more here...