2018/08/07: TASSCC

by Gene Kim on

#TASSCC

2018/08/07: TASSCC

  • @TASSCC: Packed session for the state agency #cloud track, featuring @TexasDIR, @TPWDnews, @TXAG and @TxDPS. #TASSCC18 https://t.co/ftkpOm8taG
  • encrypt all laptop: windows SCCM for laptop / desktop; Mac: LANrev and FileVault 2
  • @EndMSilva: RT @sunilalevi: #TASSCC #TASSCC18 excellent shared service initiative https://t.co/Lq6DW2f9nc

  • City of Atlanta: paid $5MM in ransom; requested additional $7MM to rebuild infrastructure

  • encrypted 3500 machines: 10% slowdown; 500 at a time; Microsoft was awesome

  • Macs: managed through LANrev: required user intervention to : literally had to type in password; most people didn’t want it, so delayed; 600 devices on campus; we had to track down campus faculty

  • reports: patching and encryption: didn’t jibe: found SCCM clients weren’t functioning right

  • Great talk on tackling infosec at Texas A&M Corpus Christi: among many other things, tackled disk encryption on all staff, faculty; Windows went great, Macs more problematic, required chasing down reluctant faculty members. :)

  • @TASSCC: --- Discussing #security & #risk mgmt. on a Multi-front Battlefield with Ben Soto & Lionel Cassin @IslandCampus

    TASSCC18 https://t.co/pzdNQjFjTv

  • @TASSCC: --- Discussing #security & #risk mgmt. on a Multi-front Battlefield with Ben Soto & Lionel Cassin @IslandCampus

    TASSCC18 https://t.co/pzdNQjFjTv

  • Fun listening to Soto and Casson securing the environment at higher education, notorious for decentralized fiefdoms, with high expectations of intellectual and administrative freedom!

  • we used to release patches whenever MSFT released patches; now we only patch test systems; wait 1 week

  • Phishing attacks -> compromised credentials -> internal attacks -> data loss

  • train everyone: what does a fish look like, what does it do, what to do when you see one; no one from Helpdesk will EVER ask for your password

  • moving to MFA: using Duo Security; multi year: 1) major apps for staff and facility, where PII; 2) secondary applicatons; 3) email for faculty; 4) upcoming: email and applications students

  • students are easiest people to roll out MFA to!

TODO