Educause Security Discussion mailing list archives

Re: Stolen Laptops

From: Joel Rosenblatt <joel () COLUMBIA EDU>
Date: Wed, 28 Jul 2010 10:34:18 -0400

We have been deploying GuardianEdge to all machines (desktops and laptops) that access sensitive information ... around here, we have seen desktops taking awalk :-)


Joel

--On Wednesday, July 28, 2010 10:27 AM -0400 Ben Woelk <fbwis () RIT EDU> wrote:

We're requiring laptop encryption, primarily centrally-managed PointSec with some pockets using other products if PointSec 
won't work/fit.

Ben Woelk '07
Policy and Awareness Analyst
Information Security Office
Rochester Institute of Technology
ROS 10-A204
151 Lomb Memorial Drive
Rochester, New York 14623 
585.475.4122
585.475.7920 fax
ben.woelk () rit edu
http://security.rit.edu/dsd.html
 
Become a fan of RIT Information Security at http://rit.facebook.com/RITInfosec
 
Follow us on Twitter: http://twitter.com/RIT_InfoSec
 


-----Original Message-----
From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of SCHALIP, 
MICHAEL
Sent: Wednesday, July 28, 2010 10:16 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Stolen Laptops

Are your institutions "encouraging encryption" on laptops, or "requiring encryption" on laptops?  We're moving to 
Symantec Endpoint Encryption (it was
GuardianEdge, but they got bought by Symantec - which is actually good for us, since we use Symantec Altiris, SEP, 
etc.) and will be doing full disk
encryption on any/all non-instructional (student use) laptops.....

M

-----Original Message-----
From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Ben Woelk
Sent: Wednesday, July 28, 2010 8:12 AM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: Re: [SECURITY] Stolen Laptops

The issue for us has been not so much preventing theft of laptops or recovering them when stolen. It is reducing the 
occurrences of private information on
those laptops or ensuring that they are encrypted. Replacement of the laptop itself is fairly trivial compared to 
notifying X number of people that their
private information was on the laptops.

We do promote awareness and physical security--locking doors, not leaving laptops unattended, use of cable locks, etc. 
We've also changed business processes
so that laptops being retired from service are secured.

Ben Woelk '07
Policy and Awareness Analyst
Information Security Office
Rochester Institute of Technology
ROS 10-A204
151 Lomb Memorial Drive
Rochester, New York 14623
585.475.4122
585.475.7920 fax
ben.woelk () rit edu
http://security.rit.edu/dsd.html
 
Become a fan of RIT Information Security at http://rit.facebook.com/RITInfosec
 
Follow us on Twitter: http://twitter.com/RIT_InfoSec
 

From: The EDUCAUSE Security Constituent Group Listserv [mailto:SECURITY () LISTSERV EDUCAUSE EDU] On Behalf Of Kimberly 
Heimbrock
Sent: Tuesday, July 27, 2010 1:25 PM
To: SECURITY () LISTSERV EDUCAUSE EDU
Subject: [SECURITY] Stolen Laptops

Unfortunately, laptops thefts have been significantly increasing, (usually in locked offices - after hours) and was 
wondering what success anyone has had
using Lojack, Prey, or other tools.  Any (affordable) ideas for increased physical security and software tools that 
have been proven to reduce thefts and
trace the equipment would be appreciated.  We will be communicating increased fac/staff awareness as it relates to the 
physical security of mobile devices,
so ideas to be included with that message would be great too. Thanks in advance!

Kim Heimbrock
Director, IT Policy and Compliance
Northern Kentucky University
(859) 572-5139
heimbrockk () nku edu<mailto:heimbrockk () nku edu>


--
This message has been scanned for viruses and dangerous content by MailScanner<http://www.mailscanner.info/>, and is 
believed to be clean.

--
This message has been scanned for viruses and dangerous content by MailScanner<http://www.mailscanner.info/>, and is 
believed to be clean.

--
This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean.


--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.




Joel Rosenblatt, Manager Network & Computer Security
Columbia Information Security Office (CISO)
Columbia University, 612 W 115th Street, NY, NY 10025 / 212 854 3033
http://www.columbia.edu/~joel

Current thread:

Re: Stolen Laptops, (continued)
- - - Re: Stolen Laptops Felecia Vlahos (Jul 28)
    - Re: Stolen Laptops Felecia Vlahos (Jul 29)
    - Re: Stolen Laptops David Bowie (Jul 28)
    - Re: Stolen Laptops Joel Rosenblatt (Jul 28)
    - Re: Stolen Laptops David Gillett (Jul 28)
    - Re: Stolen Laptops Sherry Callahan (Jul 28)
- Re: Stolen Laptops Tonkin, Derek K. (Jul 28)
  - Re: Stolen Laptops Ben Woelk (Jul 28)
    - Re: Stolen Laptops SCHALIP, MICHAEL (Jul 28)
    - Re: Stolen Laptops Ben Woelk (Jul 28)
    - Re: Stolen Laptops Joel Rosenblatt (Jul 28)
    - Re: Stolen Laptops Russell Fulton (Jul 29)
    - Re: Stolen Laptops Beechey, Jim (Jul 29)
    - Re: Stolen Laptops Maloney, Michael (Jul 28)
    - Re: Stolen Laptops Chris Green (Jul 29)
    - Re: Stolen Laptops Ben Woelk (Jul 29)
    - Re: Stolen Laptops Kimberly Heimbrock (Jul 29)
    - Re: Stolen Laptops Walter Petruska (Jul 29)
    - Re: Stolen Laptops Sherry Callahan (Jul 29)
    - Re: Stolen Laptops Joel Rosenblatt (Jul 29)
    - Re: Stolen Laptops Sherry Callahan (Jul 29)

(Thread continues...)