Adaptive security services protect endpoint data, software, and the integrity of University networks.
- Patch Management – Automated services ensure University computers are running the latest approved versions of standard operating systems and applications. Endpoints receive proactive software updates through native and third-party utilities. ITS strives to minimize interruptions when applying updates by prompting users in advance when application or system restarts are required. The Patch Manager Plus agent performs updates on Windows, and macOS updates are performed through Jamf Pro. For additional details about Patch Management Services, please visit https://its.unl.edu/services/endpoint-patch-management/.
- Vulnerability Management – Managed devices report hardware and software inventory data to ITS on a routine schedule. Using this information, ITS can upgrade operating systems and patch security vulnerabilities remotely with minimal intervention before they can be exploited. The routine scanning and reporting process is minimal and non-disruptive to regular productivity. The Nessus agent that performs the scans is not visible on the desktop but can be found in the installed applications list on Windows or System Preferences on macOS. For additional details about the Nessus agent, please review the FAQs at https://www.tenable.com/products/nessus/nessus-faq#Nessus_Agents.
- Endpoint Protection – Behavior-based detection and response for software exploits and malware. The Palo Alto Cortex agent works with native OS services, Windows Defender and macOS XProtect & Gatekeeper, to provide comprehensive endpoint protection. Cortex uses real-time detection to respond to malware and other sophisticated attacks, preventing malicious executables from running. Then, Cortex takes endpoint protection to the next level by coordinating enforcement with network and cloud security, rapidly diminishing attack vectors. Once Cortex installs, you will notice a small shield icon, with a green checkmark on Windows or interlocking circles on macOS, in your desktop taskbar. To learn more about Cortex, visit https://www.paloaltonetworks.com/cortex/cortex-xdr.
- Faculty, staff and students may download a personal version of Cortex for use on home computers. Downloads are available on the ITS Endpoint Protection page. ITS recommends uninstalling Symantec Endpoint Protection and upgrading to Windows 10 or macOS Catalina before installing Cortex.
- Endpoint Encryption – Encryption provides critical protection for University data and peace of mind if endpoints become lost or stolen. Recovery keys for managed endpoints are securely backed up and available if a password is forgotten or a device requires IT support. Encryption is enabled by default on new deployments and is available via Self Service for devices already in production. Please follow these instructions to encrypt a device https://nu-its.atlassian.net/wiki/x/roDlDw.
- Endpoint Hardening – Additional security measures are added to managed devices to meet University data security and program-specific requirements, including custom operating system configurations, firewalls, user access control, data backup, and PII detection.