Please Review: Updates to Information Security Minimum Standards

January 27, 2022

To our campus community, 

Following vigorous campus review and revision, we are pleased to announce the updated Minimum Security Standards for Networked Devices (MSSND) has been ratified effective Jan. 1, 2022. 

What this means for you

If you have a device connected to a UC Berkeley network, or that is storing, processing, or accessing Insitutional Information, regardless of location or ownership, you must follow these Standards. Visit How to Secure Your Devices for instructions on how to meet the updated standards and keep your devices safe.

What types of devices are included in these security standards?

Examples include: laptops, desktops, remote work systems connecting to UC Berkeley systems and data, phones, gaming systems, printers, etc.

Key requirements include:

  • Keeping your devices and applications up-to-date.

  • Enabling anti-malware features.

  • Turning on the firewall for your devices. 

  • Following University passphrase requirements.

  • Setting your devices to lock after 15 minutes of inactivity. 

  • Only using Campus Remote Access Services or Unit-approved Remote Access Services. 

  • Creating separate accounts for administrator tasks.

If you have any questions, please contact security@berkeley.edu

Regards, 

Jenn Stringer, Associate Vice Chancellor for IT and Chief Information Officer
Allison Henry, Chief Information Security Officer

Related links: Electronic Information Security Policy, IS-3 | Information Security Office

This message was sent campus-wide to all faculty and staff.