The Office of Information Security provides assessment services to help IT service providers operate secure IT services. The vulnerability scanning services help departments identify security issues arising from out of date software or insecure configurations. Web application assessments can identify security issues in commercial or internally-developed applications that could put data or stability at risk. Beyond these two, specific services, OIS provides more general security assessments for existing or proposed IT services. OIS is currently developing future services focused on assessing security in public cloud environments, particularly Amazon Web Services (AWS) and Microsoft Azure.
Submit your requests regarding Security Posture Assessments here. Service Offerings include:
- Vulnerability scanning and reporting
- Periodic vulnerability scanning with direct access to results (may require licensing costs)
- Ad hoc, campus-wide scanning for critical vulnerabilities (proactively provided to all departments within campus networks)
- Web application security assessment
- Ad hoc evaluation of web applications for common application layer vulnerabilities
- General security assessment for other needs
Request this service by clicking on the corresponding Service Offering button, located on the right of this page. You will be contacted with an answer to your inquiry or a request for additional information.
Who can use the service?
Any IT Service Providers at System Administration. This includes both central IT departments as well as distributed IT teams.
What does it cost me?
These services generally come at no cost, but some tools used by OIS have licensing costs that increase with expanded use, so departments may be responsible for additional direct costs.