Cyber-security is a key aspect of CCIT’s offerings to the University. CCIT’s Office of Information Security is committed to protecting the University and its faculty, staff, and students from information security threats and compromises.

Security Awareness, Education, and Consulting

Clemson University is committed to protecting the privacy of its students, alumni, faculty, and staff, as well as protecting the confidentiality, integrity, and availability of information.  To support these goals, the CCIT Office of Information Security promotes awareness and sponsors educational resources to assist with understanding, recognizing and implementing security best practices. The resources include:

• Online information security awareness courses
• Consulting services for security related projects and initiatives
• Monitoring of computing systems and networks

Clemson Security Awareness Training Security awareness training is an annual requirement for faculty and staff.  Student employees and others are also encouraged to complete the training course. To review training requirements:  Connect to the Tiger Training System.

Endpoint Security

The Office of Information Security (OIS) offers endpoint security services by providing security tools and software, as well as assisting in remediation of computer security problems such as viruses, spyware/malware, and ransomware issues. Additionally, OIS provides policies and safe computing best practices to safeguard local computer workstations, devices, and data. Recent Security Awareness Training recommends the use of a password keeper or password management software. While CCIT does not promote one specific tool, the ones listed below can be used:

• 1Password
• LastPass

Current Security Software Includes:

• TrendMicro Anti-Virus
• FireEye Endpoint Security Threat Detection
• Enterprise Drive Encryption Management
• Code42 Enterprise Workstation Backup (fees may apply)

Security Incident Response

Incident response is an integral part of the Office of Information Security (OIS), and serves as a central collection point for security incidents, analyzing incidents and information security trends, remediation, technical forensics support, and working with other incident response teams nationally and internationally.

Security Risk Management and Assessment

This service offering provides assessment and recommendations for individual systems and data handling procedures, as well as assisting departments and data stewards with data classification and proper data handling procedures. Office of Information Security (OIS) also assists auditors with audits of department systems and campus wide audits, identification, and remediation of security vulnerabilities.

Computing Policy Management

The Office of Information Security (OIS) is responsible for managing a central repository of all computing policies, guidelines and best practices.  OIS works with general counsel, human resources, and internal audit to adapt information technology (IT) requirements into formal policy, process, and procedures.

All Services (a-z)