InfraSec 06.11.14 Minutes

Attending:

Jason Maslanka, Phil Reiter, Chris Barton, Kevin Shalla, Bala Ramaraju, Eileen Katman, Heather Ross, Frank Cervone, Andre Pavkovic, Jay Dean, Doug McCarthy, Ian Huggins, Rob Dixon, Ed Zawacki, Mike Kirda, Marcin Hiolski, Anthony Marino, Mark Goedert, Cynthia Herrera Lindstrom, Allen Randall, Therese Molina, Heather O’Leary

  • Information
    • Attracting and Recruiting IT
      • Presentation on the current state of IT hiring at UIC
      • Consideration of making hiring process more transparent
      • Working to improve application process, make positions more clear
      • Consideration of how to improve diversity
      • Discussion of specific language included in job postings
    • Ad Astra Update
      • Classroom scheduling subcommittee recommends Ad Astra
      • Vendor has improved product, UIC will be implementing as a 12 month process
      • Phase one is complete, phase two is in discussion
      • Discussion on benefits of the system, what is needed to implement
      • Consideration of using Ad Astra for classroom and conference room scheduling
    • AV/IPHEC Update
      • Contracts have changed the way purchasing works
      • Each vendor is now rewarded the contract for specific manufacturers
      • Discussion of how purchasing will work in the future
      • Consideration of a centrally-supported software or web-based solution to synchronous learning
      • Discussion of Lync and related options for student and administrative use
      • Update on status of the InfraSec AV subcommittee
    • Encryption Solutions/SCCM/XP Machines
      • Discussion of encryption solutions
      • Consideration of knowledge-sharing with the Society of Critical Care Medicine (SCCM) to support one another
    • Security Topics
      • Discussion on status of Risk Assessment reports
      • Consideration of how to address logging and wireless management for the central logging system
      • Team is working to draft UISO letters to send out to units and create UISO database
      • A university-wide IT security committee is being created per president Easter’s request, includes CIOs and many others
      • HIPAA group will come up with policies, procedures, training, etc.
      • Draft of a diagram will be shared soon on how the many groups will relate
  • Project Updates
    • Discussion
      • Network infrastructure upgrade on east campus is almost complete
      • Focus is currently on Network, Storage to be addressed in the fall
      • Discussion of BAA agreement in general, and for O365
      • Discussion on whether HIPAA certifications are necessary for Box, Sharepoint, high risk data, etc.
      • Consideration of what should be allowed regarding high risk data and policies
      • BAA agreements for Box, SharePoint, and 0365 are in process