Security Services

The following security services are offered:

• Email Spam Scanning Service: Information regarding the spam-scanning function on the campus mail servers and setting up spam-filters.



• Email Abuse Investigation & Response: We do not approve or support the sending of harassing email messages or unsolicited email by our users, and we will take appropriate action against our users if they commit these violations.



• Vulnerability Assessments: The UCSC IT Security Team will perform remote vulnerability scans when requested by authorized administrators. Please send requests to security AT ucsc.edu with your request listing the systems you want checked.



• Data Center Firewall Service: The UCSC Information Systems Security Team provides firewalling services for systems co-located within the Data Center (from architecture and design to implementation, monitoring and management). Please refer to the SLA for change control specifics.



• Intrusion Detection: In the event that the UCSC Information Systems Security Team becomes aware of an incident, either external or internal, we will coordinate with the sysadmins in charge of the campus machine(s) in question in order to determine the extent of the breach, if any, as well as come up with a plan to mitigate the damage and fix the hole.



• Incident Response: If you suspect that you have a system that has been compromised or is being attacked, please report the incident immediately to the UCSC Information Systems Security Team.



• Education: People are an extremely important component to effective security. However, the human component is often the weakest link within any security infrastructure. In response, an objective of the UCSC Information Systems Security Team is to provide security awareness training and education to members of the campus community so as to build a security-conscious environment.