Profile

CommunityPlatform_1350x900.jpg

Brian Epstein

Edit My Profile

My Content

1 to 13 of 13 total

RE: Password Phrases

Posted By Brian Epstein 02-27-2024 06:54:33 AM
Found In Egroup: Cybersecurity \ view thread
Hi Rusty, We started a campaign a few years ago to change our documentation to refer to passphrases instead of passwords. We moved to a minimum 15 character passphrase and did a lot of marketing to show folks that passphrases are complex (if you add spaces and punctuation), easier to remember, and easier ...

RE: Password Managers

Posted By Brian Epstein 01-11-2024 08:03:19 AM
Found In Egroup: Network Management \ view thread
Hi Brian, We just finished a similar transition over to Bitwarden. I believe the features meet your requirements and the migration went smoothly for us. The only major issue was the 10k limit on secure notes in Bitwarden, which the other provider didn't have. We had to export those entries to text files ...

RE: Call for Agenda Items: 2.22.23 Diversity in IT Monthly Call

Posted By Brian Epstein 02-08-2023 11:30:05 AM
Found In Egroup: Diversity in IT \ view thread
Hi Charron, I'd like to add to the agenda a topic on how folks are handling documentation for technical systems that don't use inclusive language. For example, we are documenting our procedure on deactivating accounts. Microsoft's Active Directory uses flags for "disabled" and "enabled". In an effort ...

RE: Inactive Duo user accounts

Posted By Brian Epstein 09-13-2022 06:27:14 AM
Found In Egroup: Identity and Access Management \ view thread
Hi David, We use the automatic removal after inactivity of 180 days. We currently use a self registration portal, but as we are moving from Duo Access Gateway to Duo SSO, we are just going to point our new users to Duo Central which allows them to sign up and manage their devices. Thanks,ep -- Brian ...

RE: BYOD AV Offering

Posted By Brian Epstein 05-13-2022 06:17:00 AM
Found In Egroup: Cybersecurity \ view thread
We used to provide free licenses for AV for Microsoft Windows. However, we evaluated Microsoft Defender a couple years ago and found that it had matured into an equally viable product. So, we changed tactics and heavily encourage folks to use it. For Mac, Linux, and mobile, there are a number of free ...

RE: Requirements for SSO integration with a third-party service

Posted By Brian Epstein 03-11-2022 06:45:57 AM
Found In Egroup: Identity and Access Management \ view thread
Hi Matt, Having just gone through this exercise over the past two years I can relate to the confusing nature of SSO and all the options open to you. For us, we coupled SSO with our MFA initiative for services on campus. Like many other higher-ed institutions, we decided to go with DuoSecurity.com for ...

RE: What solution do you use for secure, encrypted file sharing?

Posted By Brian Epstein 02-25-2022 11:58:00 AM
Found In Egroup: Cybersecurity \ view thread
We are currently using filelocker, but it hasn't been updated since 2016. We are currently evaluating Dropbox Transfer. We already have Dropbox licenses, so this is the easiest path forward. However, there is no API for Dropbox Transfer, so we lose on being able to add it into our user provisioning ...

RE: Cisco Duo 2FA - Remember Me Feature

Posted By Brian Epstein 02-24-2022 12:06:50 PM
Found In Egroup: CIO \ view thread
Hello Zhen, We do utilize the "remember me" function for web based logins. We decided to go with 1 day for all services. It seems like the user community is happy to use MFA once, and appreciates not needing to use it for the rest of the day. Doing it daily keeps them in the practice of using it regularly, ...

RE: COVID Proof of Vaccine - Systems you are using

Posted By Brian Epstein 11-04-2021 09:33:14 AM
Found In Egroup: CIO \ view thread
We are using https://www.crowdpass.co/ for events, short term visitors like contractors, consultants, or conference attendees. For Faculty and Staff, we are using an in-house system for uploading your vaccination records. Thanks,Brian -- Brian Epstein (he/him/his) +1 609-734-8179 Manager, Network ...

RE: Student personal smart devices in dorms

Posted By Brian Epstein 11-03-2021 12:25:46 PM
Found In Egroup: CIO \ view thread
Dmitriy, We do have a BYOD network that is segmented from the rest of our network. Folks have to register devices to join that network and agree to an AUP before it has access to the Internet. We reserve the right to remove any misbehaving devices. Our biggest headaches are the devices that are designed ...

RE: EV Charging Stations and billing app

Posted By Brian Epstein 10-29-2021 09:39:10 AM
Found In Egroup: CIO \ view thread
When we put our first chargers on campus, we determined that the cost was low enough to just absorb. We did go with https://clippercreek.com/, though. They were able to integrate into our existing card access system so that only authorized and authenticated folks on our campus could charge. We could ...

RE: CISO Reporting Structure

Posted By Brian Epstein 09-30-2021 02:51:00 PM
Found In Egroup: Cybersecurity \ view thread
Hi Emilie, For us, the CISO reports to the CIO. We have the right relationship and the culture is good for this to work. In many aspects we are peers, but this set up allows us to reduce the number of people that need to be in the leadership meetings, and doesn't give bias to IT. In other institutions, ...

RE: MFA Implimentation

Posted By Brian Epstein 09-30-2021 11:04:00 AM
Found In Egroup: Identity and Access Management \ view thread
Hi William, For us, we have it set to remember a user/device for 24 hours for all services. We don't extend that limit. For our community, the ability to practice daily and have a consistent login process was important. What we've found is that folks are very familiar with the process because they have ...