Educause Security Discussion mailing list archives
Re: Desktop Administrator Question
From: Morrow Long <morrow.long () YALE EDU>
Date: Wed, 1 Feb 2012 08:52:09 -0500
We also could not use the standard survey form -- we've removed administrative access from all computer users/owners (Windows and MacOS) in the HIPAA-covered components as well as other areas with highly confidential data. Morrow -----Original Message----- From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Joel Rosenblatt Sent: Wednesday, February 01, 2012 12:17 AM To: SECURITY () LISTSERV EDUCAUSE EDU Subject: Re: [SECURITY] Desktop Administrator Question Hi, I looked at your survey and I would suggest that you add a qualifier to your third question. We allow administrative access UNLESS the desktop is used to process university sensitive information - so the answer is not yes or no, but it depends. Thanks, Joel Rosenblatt Joel Rosenblatt, Manager Network & Computer Security Columbia Information Security Office (CISO) Columbia University, 612 W 115th Street, NY, NY 10025 / 212 854 3033 http://www.columbia.edu/~joel Public PGP key http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x90BD740BCC7326C3 --On Tuesday, January 31, 2012 11:12 PM +0000 "Johnson, Jeff" <JJOHNS86 () DEPAUL EDU> wrote:
Hello Everyone, DePaul is currently evaluating how we have access rights and roles setup on desktop/laptop computers at the institution. We currently give all employees administrator rights to their desktop computer. Our
understanding is that most institutes of higher education are offering employees of the institution administrator rights on their desktops, but we would like to validate this to satisfy some questions from some others (particularly internal audit folks).
As such, we were interested in gathering some more concrete data on this
and have created a very short and simple (4 question) survey to capture this
information. We would very much appreciate your participation if you
are able, and we will share the results for everyone via email (cleansing any
personal information you choose to enter prior to doing so of course). If you would rather pass this on to colleagues involved in desktop
administration and support, that would also be most appreciated.
Here is a link to the survey: http://depaul.qualtrics.com/SE/?SID=SV_6lNkqctZNQ5BZaI Thank you so much for your help! Regards, Jeff Johnson Infrastructure Support Manager, Information Systems, DePaul University
Joel Rosenblatt, Manager Network & Computer Security Columbia Information Security Office (CISO) Columbia University, 612 W 115th Street, NY, NY 10025 / 212 854 3033 http://www.columbia.edu/~joel Public PGP key http://pgp.mit.edu:11371/pks/lookup?op=get&search=0x90BD740BCC7326C3
Attachment:
smime.p7s
Description:
Current thread:
- Desktop Administrator Question Johnson, Jeff (Jan 31)
- Re: Desktop Administrator Question Steven Alexander (Jan 31)
- Re: Desktop Administrator Question Joel Rosenblatt (Jan 31)
- Re: Desktop Administrator Question Lazarus, Carolann (Feb 01)
- Re: Desktop Administrator Question Morrow Long (Feb 01)
- Re: Desktop Administrator Question Rich Graves (Feb 01)
- Re: Desktop Administrator Question Steven Alexander (Feb 01)
- Re: Desktop Administrator Question Kevin Shalla (Feb 02)
- Re: Desktop Administrator Question Johnson, Jeff (Feb 03)
- Re: Desktop Administrator Question Drews, Adam (Feb 02)
- Re: Desktop Administrator Question Johnson, Jeff (Feb 03)
- Re: Desktop Administrator Question Johnson, Jeff (Feb 17)
- <Possible follow-ups>
- Re: Desktop Administrator Question Gramke, Jim (Feb 01)
- Re: Desktop Administrator Question Steve Kuchta (Feb 01)