Skip to content Skip to navigation

1:45–2:30 p.m.

Security Problems (and solutions?) with Individual Users Sharing Stanford Data on Box, Google, etc.

This session is intended to complement the later session on best practice on access rights on file servers.

 

All throughout the university, we have big contracts with cloud storage vendors. There is a huge degree of adoption, but it is unclear how users are actually using the services and if they are doing so according to security guidelines. Can we discuss (1) technical and (2) cultural things we can do to make sure services are used effectively without causing security problems?

 

AWS + SSO: Overcoming Challenges

Intros

Who are we?

 

Many attendees are moving to a cloud provider, or already have committed to AWS.

Some attendees support clients who use AWS (e.g., law school or library)

Many attendees want to use SSO off campus.

Others use Google Cloud Platform (GCP) and are curious about relationships to AWS

 

How do you set up basic SSO on AWS?

  • [Stanford] Set up workgroups with people in it

Enhancing Collaboration and Client Satisfaction by Consolidating Remote Support

Computer Functionality:

·         IRT Technician uses SAML Credentials to launch the application and provide the session key to the customer

·         Customer would navigate to Bomgar department website and the technician would provide a session key to launch the session

·         Some tools a technician may find useful is the following:

o   File Transfer, Command Shell, Obtain System Information, Screen Sharing, Registry Access

o   Add IRT Button to Customer’s Desktop, Transfer to Another Analyst

How would you like to be involved in information security? How much should you be?

ISO General Information

  • Context: ISO is the only security group at Stanford that focuses on security 100% of the time. The discussion for this session is to fix the

  • Phishing campaign has been incredibly successful across groups that have opted-in in campus

    • Use training and awareness and use data-driven information to drive training

Pages

Subscribe to 1:45–2:30 p.m.