Educause Security Discussion mailing list archives
Participation requested for Host Inventory survey based on Critical Security Control # 1
From: randy <marchany () VT EDU>
Date: Wed, 24 May 2017 11:31:15 -0400
Dear IT Leaders, The Virginia Tech IT Security Lab is conducting research to better understand host inventory controls utilized in networks of higher education institutions. As part of this effort, a survey has been developed to determine what challenges higher education institutions face with implementing the first CIS Critical Security Control (previously known as the SANS Top 20 Critical Security Controls). The key principle of CSC #1 is, “actively manage (inventory, track, and correct) all hardware devices on the network so that only authorized devices are given access, and unauthorized and unmanaged devices are found and prevented from gaining access.” Implementing this control helps identify the owner and location of a machine which is a target or source of an attack. We are inviting all CISOs / CIOs from higher education institutions in the United States to participate. No personal information is required to complete the survey. Some questions will be asked to categorize the size of your institution. Only one response per institution is needed. The survey should take around 15 minutes to complete. Completion of the survey indicates your willingness to be part of the study. Participation may be withdrawn at any time and your data will be destroyed. If you have any concerns about the risks or benefits associated with your responses, please contact Philip Kobezak (pdk () vt edu). The survey is available here: https://virginiatech.qualtrics.com/jfe/form/SV_4It7C2T8LHmtX7v Aggregate results will be published once sufficient responses have been recorded and analyzed. We ask that you respond no later than June 12, 2017. Thank you for your participation and we look forward to sharing the aggregate results. Randy Marchany VA Tech IT Security Office and Lab http://security.vt.edu marchany () vt edu Twitter: @randymarchany
Current thread:
- Participation requested for Host Inventory survey based on Critical Security Control # 1 randy (May 24)