Pursuant to University System of Georgia (USG) policy, Section 5.8, all USG organizations must implement endpoint security by "deploying tools that add a layer of security to devices connecting to networks that may otherwise make them vulnerable to cyber attacks."
Based on USG recommendations and contractual obligations, Georgia Tech is implementing the following controls between now and September 30.
Phase 1
By August 31
-
Disable Auto-Run and Auto-Play
Active Directory Group Policy will be configured to disable auto-run or auto-play technology. Auto-run and auto-play enable devices to automatically launch programs from external drives or media that are connected.
IT Staff - View the GPO that will Disable Auto-Run >
By September 15
-
Endpoint management tools will enforce installation of Qualys Cloud Agent and Cortex XDR.
-
Users may notice new applications such as CortexXDR (anti-malware) and Qualys (inventory and vulnerability scanning) on Institute owned endpoint devices.
IT Staff - View Knowledge Articles on XDR and Qualys Enforcement >
By September 30
-
Transition from FireEye to Cortex XDR
Transition from FireEye anti-malware software to Cortex XDR Installation of endpoint management tools on Institute-owned devices for all departments with local IT support.