InfraSec 07.20.16 Minutes

Attending:

Kevin Shalla, Chris Barton, Julio Chavarria, Ed Zawacki, Allen Randall, Brian Ng, Ashok Bennett, Frank Cervone, Cynthia Herrera Lindstrom, Vinay Surpuriya, Jason Maslanka, Therese Molina, Ernesto Reyna, Bala Ramaraju, Kevin Price, Marcin Hiolski, Andre Pavkovic, Josh Naylor, Phil Reiter, Matt Miller, Lisa Blake, Heather O’Leary, Dean Dang, Ron Fernandez, Mark Goedert

  • Subcommittee Reports
    • Digital Accessibility
      • Meeting in August to discuss important topics
    • Risk Assessment
      • Looking at survey to send out for risk assessment
      • Working to realign risk assessment business goals
    • Security
      • Next quarter rollout and annual report are ready
      • Flowcharts created for incident response
      • Discussion of timeline
      • Discusison of scheduling and sharing trainings across campus
      • Concern voiced about high-level campus buy-in
      • Discussion of making training mandatory and consequences for those who do not comply
      • Further discussion of scheduling trainings and need for centralization
    • Digital Signage
      • New product almost ready
  • New Business
    • Contracts
      • Noted that UofI IT consulting partner contracts have not been renewed
      • Staffing portion of the contract mentioned
    • Two-Factor Authentication
      • Presentation on two factor authentication was given
      • Suggested solution for attacks on direct deposit was given a demonstration
  • Old Business
    • Web Governance Subcommittee
      • First meeting was held and will be reporting back to InfraSec
    • HR Resolutions
      • Appeals board formed and will begin hearing appeals for misclassifications
  • Projects and Services
    • ACCC Updates
      • ACCC updates were shared
      • Discussion of Exchange Online
      • Further discussion of various projects and statuses
      • Discussion of CrashPlan BAA and HIPAA concerns
      • Working to get the BAA signed as soon as possible
  • Chair’s Reports
    • Committee in state of transition, need to work to find direction
    • ITGC assessment in process
  • Discussion Topics
    • ITGC Assessment Update
      • Noted that a survey had been sent out to ask for feedback on ITGC process
      • Focus groups will be held in the fall for further feedback and how to best improve ITGC
      • Discussion of importance of IT governance and need for improvement
    • VM Price Increase
      • Noted that VM pricing for CUPPA has doubled, making it harder to afford
      • ACCC staffing issues were questioned
      • Noted that services will be supported and the staffing issue is being worked on
    • LeCT
      • Noted that the IT leadership group is looking to expand
      • Discussion on how to encourage people to get involved
    • Exchange Online License
      • Suggested that the license expired but they have reapplied for it
      • Discussion of licensing for Exchange mailboxes
    • InfraGard & CyberHealth
      • What each group is and are helpful with was mentioned
      • Information will be forwarded to listserv