1 / 39

Security Awareness

Security Awareness. Course Objectives. Lesson 1: Are you the weakest link? Lesson 2: Password Security & Safety Lesson 3: Workstation Security Lesson 4: Physical Security Lesson 5: Internet & E-mail Security Lesson 6: Acts. Lesson 1: Are you the Weakest Link?.

JasminFlorian
Télécharger la présentation

Security Awareness

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Security Awareness Georgia Southern University Security Awareness

  2. Course Objectives Lesson 1: Are you the weakest link? Lesson 2: Password Security & Safety Lesson 3: Workstation Security Lesson 4: Physical Security Lesson 5: Internet & E-mail Security Lesson 6: Acts Georgia Southern University Security Awareness

  3. Lesson 1: Are you the Weakest Link? Georgia Southern University Security Awareness

  4. Even the most advanced security efforts can be defeated by old-fashioned manipulation of users and exploitation of users with excessive access. Georgia Southern University Security Awareness

  5. Be Careful Who You Trust Social Engineering plays on the human desire to trust and help others. Hackers use social engineering to manipulate the natural human tendency to trust. Georgia Southern University Security Awareness

  6. What Should I Watch For? • Rushing • Flattery or flirtation • Name dropping • Requesting confidential information • Intimidation Georgia Southern University Security Awareness

  7. What Should I Do? • Slow down • Don’t give anyone your password • Ask questions and be suspicious Georgia Southern University Security Awareness

  8. What Should I Do? • Don’t give out information you don’t own – bump the request to your supervisor • Report to IT-Service support person Georgia Southern University Security Awareness

  9. Lesson 2: • Password Safety & Security Georgia Southern University Security Awareness

  10. What Could Someone Do If They Had Your Password? • Send threatening e-mail on your behalf • Access Web sites on which you have enabled one-click ordering and purchase items with your credit card Georgia Southern University Security Awareness

  11. What Could Someone Do If They Had Your Password? • Manipulate documents you have stored on your computer, or other central file servers you have permission to access • Connect to GSU e-mail servers and spam others • Gain access to GSU network and attack others on your behalf Georgia Southern University Security Awareness

  12. Choose a Secure Password • Easy to remember • Don’t have to write it down • Can be typed quickly • Mix of random letters, digits, etc Georgia Southern University Security Awareness

  13. Choose a Secure Password • Xms25thoD • Ihomdf5y Georgia Southern University Security Awareness

  14. GSU Password Requirements • Your password MUST: • Consist of 6 char. or more • Contain 3 of 4 categories Uppercase/lowercase Numbers/special characters Georgia Southern University Security Awareness

  15. Password Safety • Never share your password with anyone • There are other methods of granting access to data and systems if there is a legitimate need Georgia Southern University Security Awareness

  16. Password Safety • Don’t record your passwords any place they could be vulnerable • Change your password based on the system requirement • If you suspect a password compromise, change it immediately Georgia Southern University Security Awareness

  17. Treat Your Password Like Your Signature • Your password is the major form of protection for your computer account and the University resources that you have permission to access Georgia Southern University Security Awareness

  18. Lesson 3: • Workstation Security Georgia Southern University Security Awareness

  19. Be Caution About What You Install • Is it worth the risk? • Every time you install a new program, you expose yourself to security holes that are inherent in that program. Georgia Southern University Security Awareness

  20. Be Caution About What You Install • Installers can include additional invisible applications, commonly referred to as spyware • Spyware gathers information about the user and relays it to advertisers Georgia Southern University Security Awareness

  21. Lesson 4: • Physical Security Georgia Southern University Security Awareness

  22. 7 Easy Things to Do • Every time you leave your workstation, lock your computer or log out • Lock your office door or cabinets at the end of the day Georgia Southern University Security Awareness

  23. 7 Easy Things to Do • Lock your laptop in your desk or cabinet • Store work-related documents on a server • Backup your data regularly Georgia Southern University Security Awareness

  24. 7 Easy Things to Do • Follow a “clear desk” policy • Retrieve your documents from printers, copy and fax machines Georgia Southern University Security Awareness

  25. Lesson 5: • Internet, Web, and E-mail Security Georgia Southern University Security Awareness

  26. Always Be Suspicious • Attachments could contain a virus • Opening an attachment or clicking of a link could trigger a virus download Georgia Southern University Security Awareness

  27. Key Point • If you don’t know what is it or where it came from, don’t open or click on it! Georgia Southern University Security Awareness

  28. Reporting Security Threats • Report suspected abuse of GSU computing resources to IT Services • Report SPAM to IT Services Georgia Southern University Security Awareness

  29. Reporting Security Threats • Be sure to preserve all evidence and details of the incident • Don’t delete or move the message from your inbox Georgia Southern University Security Awareness

  30. Double-check Yourself! • Don’t send messages to more recipients than necessary • Make sure messages are addressed correctly before you hit send Georgia Southern University Security Awareness

  31. Lesson 6 • Acts Georgia Southern University Security Awareness

  32. Digital Millennium Copyright Act • Extends federal copyright law to protect works from unauthorized electronic reproduction and distribution Georgia Southern University Security Awareness

  33. Violations of DMCA • Receiving an e-mail with copyrighted information and forwarding it to others • Making copies of music you have downloaded using your computers CD drive • Downloading copyrighted materials from other user’s computers Georgia Southern University Security Awareness

  34. FERPA • Family Educational Rights & Privacy Act: The Buckley Amendment • Rules regarding student records Georgia Southern University Security Awareness

  35. HIPPA • Health Insurance Portability and Accountability Act • Medical records • Information disclosure Georgia Southern University Security Awareness

  36. Summary – Key Points Georgia Southern University Security Awareness

  37. What You Can Do • Choose a secure password • Keep applications and OS current • Be cautious about what you install • Secure your computer • Secure your work space Georgia Southern University Security Awareness

  38. Resources • For general questions or comments • Contact IT Services Help Desk 912-681-5429 or www.services.georgiasouthern.edu Georgia Southern University Security Awareness

  39. You are the Key to Security! Georgia Southern University Security Awareness

More Related