In collaboration with the IT campus community, OIT adopted a new Endpoint Protection Standard to comply with the university’s Computer Use Regulation, which requires authorized users to take appropriate security precautions to protect and secure data residing in or on:
- assigned university accounts and other university IT resources.
- non-university IT resources.
The Endpoint Protection Standard outlines the minimum requirements, or security controls, for information system components that connect to NC State’s network, including university-owned resources and devices and personally owned resources and services. It applies to users of those components.
In phase 1 of this project, campus IT support staff were required to enroll university-owned Windows and Mac devices in an approved configuration management system by June 30. Those who could not comply with the EPS by the June 30 deadline were required to complete an IT exception and an implementation plan. OIT staff have partnered with dozens of campus units to complete the attestation process. In the process, hundreds of computers that had not been managed in the past have been added to the configuration management systems so they can be better accounted for and made more secure. For more information about the project, see Endpoint Protection Standard Implementation.