Data Security at Northwestern
March 2007
If you became aware of a computer security violation in your area, would you know what do?
Any time you suspect or know of a circumstance in which sensitive information is released beyond the sphere of University control, it is considered a security incident. Support staff is available to investigate these incidents and understand the extent of the security exposure. If you ever have a reasonable suspicion of a security incident, immediately contact your management, local technical support staff, and NUIT's Network Operations Center at 847-467-NNOC (6662).
Not only is it easy to report a potential problem, it is also your responsibility as a member of the Northwestern community. It is essential that the University’s information assets remain protected for many reasons, including:
- Personal information — Protecting your personally identifiable information keeps it private and out of the hands of identity thieves.
- Constituents — Proper handling of personally identifiable information helps the University comply with federal and state regulations, minimize the risk presented by identity theft, and avoid possible criminal and civil action and penalties.
- Network performance — Keeping your computer secure helps to protect the network and keep it secure and stable.
- Northwestern’s reputation — Protecting sensitive data from unauthorized access helps ensure compliance with privacy regulations, avoids adverse publicity, and bolsters the reputation of the University.
Help keep Northwestern information resources safe by following these guidelines, also available from the security section of the NUIT Web site:
Secure your computers
- Start Now — A PC must be secured before connecting to the Internet. An unprotected computer can be taken over in minutes, and often without your awareness. Follow these steps to help ensure your system is secure.
- Secure Passwords — Strong, effective passphrases/passwords are simple and important defenses. Make it complex and keep it to yourself. Find more information about passwords from the security section of the NUIT Web site.
- Protective Programs — Viruses, spyware, and other malware can cause computer malfunction or allow hackers to steal data. Use Symantec AntiVirus and Spybot - Search & Destroy, both free for download from NUIT from the security section of the NUIT Web site.
- Secure Settings — Security flaws can exist in any operating system or software, and must be fixed with small programs called patches. Set your computer to update automatically.
- Smart Habits — Be a skeptical computer user. Be wary of downloads and attachments, and lock or turn off your computer when not in use. If you suspect an incident, report it to NUIT's Network Operations Center at 847-467-NNOC (6662). More about smart habits is available from the security section of the NUIT Web site.
Secure your working environment
For full instructions and tips, go to the security section of the NUIT Web site.
- Protected Data — Treat all sensitive data as a valuable asset to minimize the chance that it is released: don't use Social Security Numbers as identifiers, inventory where sensitive data resides, and encrypt private data sent across the network.
- Careful Disposal — Properly dispose sensitive data and computer hardware when it is no longer needed. Find out more about University disposal resources.
- Safe Connections — Avoid unapproved wireless networks and public computers for accessing private data. Find out more about using safe connections.
- Be Prepared — In the event of a disaster or a security incident, do you know what to do? Report all security incidents to your management, local support staff, or NUIT at 847-467-NNOC (6662) or security@northwestern.edu.
Remember, you are the key to information security!
More information about information security at Northwestern is available on the security section of the NUIT Web site.
