Profile

CommunityPlatform_1350x900.jpg

Dennis Bolton

Edit My Profile

My Content

1 to 20 of 27 total

RE: PII in Emails

Posted By Dennis Bolton 04-18-2024 01:49:18 PM
Found In Egroup: Google Workspace \ view thread
I echo Brad's comments. I will add that the built in filters (like any RegEx) can be fussy, we frequently get Chemistry Part Numbers flagged as matching PII (like an NPI or License #). We've not found a good way to allow a false positive through and Google support isn't super efficient. Also for custom ...

RE: Network device configuration backup

Posted By Dennis Bolton 02-22-2024 12:45:48 PM
Found In Egroup: Network Management \ view thread
Hey Bruce, There is RANCID, which I believe to still be free, but totally recommend Kiwi CatTools for its ease of use. (They've also had good support). Dennis Bolton Senior Director of IT Security & Chief Information Security Officer (CISO)M.S. Cyber SecurityCISSP • CCSP • CEH • CISM • CDPSE • GEVA ...

RE: Password Managers

Posted By Dennis Bolton 01-11-2024 08:16:08 AM
Found In Egroup: Network Management \ view thread
Hi Brian, We are using 1Password and have been really happy with it. We are not yet campus wide, but have about a 100 users (both central and distributed) and have really positive feedback. From the non-technical side of the house I can say the AgileBits \ 1Password Team have been a fantastic company ...

RE: Student MFA Exemption

Posted By Dennis Bolton 11-02-2023 08:36:59 AM
Found In Egroup: Cybersecurity \ view thread
We do not have MFA rolled out to students (other than a small subset of student employees) but are looking to do so in the future. As of right now we've not had to make any exceptions (disability or otherwise) for our population. However, I really appreciate this discussion as it will help us in planning, ...

RE: NSC Breach

Posted By Dennis Bolton 06-28-2023 12:59:00 PM
Found In Egroup: Cybersecurity \ view thread
My understanding is the notification letters are pretty vaguely worded, something akin to "we believe" and "may have been impacted". So although they are putting more information out it does seem like they are stating they had a breach but are implying, but not confirming, if a specific institution's ...

RE: Requirement for offline backups

Posted By Dennis Bolton 06-23-2023 10:08:18 AM
Found In Egroup: Cybersecurity \ view thread
We are doing the exact same thing Veeam -> AWS. I was only tangentially involved but a few of the key factors for us were: Tapes were stored in basically the same location as our primary DC so they offered no protection against physical disaster We had the expense of a 3rd party to off-site them We ...

RE: IPv4 Brokers

Posted By Dennis Bolton 05-19-2023 01:34:51 PM
Found In Egroup: Network Management \ view thread
I would echo what Julian said. I would add there is also significant cost in training all technical staff (not just Networking) to make sure they understand IPv6 staff to the extent necessary for their jobs as well as adapting the supporting infrastructure. For example we have a lot of security, operational, ...

RE: How long do unenrolled students retain access

Posted By Dennis Bolton 04-25-2023 09:47:09 AM
Found In Egroup: Identity and Access Management \ view thread
Historically we have allowed students to retain access for 1 year since the last date of enrollment which included all services. We are moving to a model that students will retain access to email for life but will lose access to other services after the 1 year period. Dennis Bolton Information Security ...

RE: Door Access Control Systems

Posted By Dennis Bolton 04-13-2023 09:51:37 AM
Found In Egroup: Network Management \ view thread
We have a mix of SiPass and Transact, with Transact being academic and most administrative things. I've been less involved with SiPass but a lot of our Transact readers have an undesirable lack of security including the inability to disable telnet. Dennis Bolton Information Security OfficerM.S. Cyber ...

RE: Multifactor campus exemptions

Posted By Dennis Bolton 02-08-2023 01:23:37 PM
Found In Egroup: Cybersecurity \ view thread
Right now we have only rolled out MFA for faculty & staff on our SSO based services and require for both and off campus access. We've had very few requests for exemptions but in the event someone does need a bypass code we require them to join a virtual meeting (Meet, Zoom, etc) and show valid photo ...

RE: Built-in browser-based password managers

Posted By Dennis Bolton 01-13-2023 02:09:59 PM
Found In Egroup: Cybersecurity \ view thread
Hi Larry, We strongly discourage the user of browser-based password managers. We are starting to offer 1Password on campus and do allow their browser extensions, however we instruct folks that those should only be used on university managed devices. Dennis Bolton Information Security OfficerOakland ...

RE: Workstation Security Remediation Process

Posted By Dennis Bolton 12-20-2022 02:48:28 PM
Found In Egroup: Cybersecurity \ view thread
Hi All, We do something similar (although we do not support student's personal machines). Not to hijack the thread but as part of the reimage is anyone trying to reflash the firmware? I'm really interested in ensuring the UEFI is clean as part of our international travel laptop loaner program. Thanks, ...

RE: Keyless Locks in Residence Halls?

Posted By Dennis Bolton 11-28-2022 11:28:18 AM
Found In Egroup: Network Management \ view thread
I would have to verify if we use these on the individual rooms but many of the doors in our residence halls are secured by Transact door readers. (To be transparent we use these readers for a variety of purposes including securing classrooms and payment via campus cash for vending machines, laundry equipment, ...

RE: IP Address Management

Posted By Dennis Bolton 11-18-2022 11:47:52 AM
Found In Egroup: Network Management \ view thread
Hi, We are using BlueCat Address Manager and have been with it for a very long time. I'm not primary on the system but it has been reliable, however my impression is that for bugs break/fix support has become a challenge over the last few years. Dennis Bolton Information Security OfficerOakland University ...

RE: Cybersecurity and Privacy Program Director

Posted By Dennis Bolton 11-08-2022 01:12:39 PM
Found In Egroup: Cybersecurity \ view thread
Congrats Joe! Dennis Bolton Information Security OfficerOakland University Dodge Hall Rm 220 118 Library Drive Rochester, MI 48309-4401 248-370-4803

RE: Where does your IT Vendor Management team live?

Posted By Dennis Bolton 10-31-2022 03:04:23 PM
Found In Egroup: IT Procurement and Supplier Management \ view thread
Ours is also in in IT; they work closely with both our purchasing and legal departments. Dennis Bolton Information Security OfficerOakland University Dodge Hall Rm 220 118 Library Drive Rochester, MI 48309-4401 248-370-4803

RE: Firewall Vendor

Posted By Dennis Bolton 02-28-2022 01:04:42 PM
Found In Egroup: Network Management \ view thread
Hi Steve, We looked at going with the native NSX-T Distributed Firewalls but decided to go with the Palo Virtual Firewalls instead. Having the ability to integrate policy for the virtual firewall and physical firewalls in Panorama made it really attractive for us. We are working on getting our DC hardware ...

RE: Firewall Change Request Form

Posted By Dennis Bolton 02-08-2022 11:00:23 AM
Found In Egroup: Network Management \ view thread
Hey Brian, I wouldn't say this is ideal but we have the following form: https://www.oakland.edu/uts/efficient-processes-forms/forms/ Firewall Request Form. Dennis Bolton Information Security OfficerOakland University Dodge Hall Rm 220 118 Library Drive Rochester, MI 48309-4401 248-370-4803

RE: In-House SOC Staffing - How many FTE?

Posted By Dennis Bolton 01-25-2022 01:24:00 PM
Found In Egroup: Cybersecurity \ view thread
Hi Randy, We are not 24x7, I do remember 12 people being referred to as the recommended minimum by either ISC2 or ISACA in their materials. (Kind of academic but thought that may be helpful if you are advocating for resources). Dennis Bolton Information Security OfficerOakland University Dodge ...

RE: EDR, MDR, XDR

Posted By Dennis Bolton 01-12-2022 08:53:00 AM
Found In Egroup: Cybersecurity \ view thread
Hi All, Hopefully not sending the thread into too much of a different direction, but I was curious if others might have specific thoughts on our use case. We are currently a Google Workspace Education shop with a diverse client set (Windows, Mac, Linux, iOS, and Android). As we look long term we ...