Profile

We block a number of countries, including China and Russia due to the amount of attack traffic originating from there. We deal with requests for exemptions on a case by case basis. So far, we have not had to allow any traffic from those countries. This is by no means a panacea, but it has reduced the ...

We do not offer any exemptions and have been using MFA for everyone for about 6 years. If you think about it, MFA itself is very similar to an accommodation, since it is far easier to manipulate than a password. If you are able to go passwordless, then it becomes even easier. That being said, you really ...

Hi folks, We patch all critical vulnerabilities or bugs as soon as is practicable. We have a weekly maintenance window of 5 hours and will seek to do them then if it can wait. Otherwise, we rely a lot on redundant infrastructure and failing over where possible, upgrading, testing, then replicating or ...

Whoops, got the link to work by cut and paste. Seems clicking directly on it doesnt work. ------------------------------ Jeff Durfee, CISSP Chief Information Security Officer University of North Florida ------------------------------

Randy, thanks for sharing the link, but it doesn't appear to be accessible, at least to me. Would love to see it. We have put in place a 2 hour dissolvable local admin permission that is available on demand after someone completes an online training course on privileged access. We have an exception ...