Support Page Content
IT Security Guidance for Remote Access
Many Sac State systems are accessible from a variety of devices and locations outside the University’s main network via the internet. Many of these devices are not University managed, and represent an increased risk to information resources. Devices that are not accessing resources from within the University’s protected network are accessible to hackers and others with bad intentions, and these devices are more susceptible to viruses, malware, Phishing, and compromised credentials. These devices put Sac State at risk of exposing confidential data. Please use additional care and precautions when accessing Sac State resources when working remotely.
Personal Device Usage
If you are using a personal device to access Sac State resources, please ensure the following:
- Whether you are connecting from your Wi-Fi network at home, or through a public Wi-Fi, you should not consider your internet connection to be private. Do not connect to Sac State information resources without first connecting to the University’s Global Protect VPN service.
- Use anti-virus and anti-malware software that is kept up to date. This includes all small footprint devices such mobile phones and tablets.
- Ensure that your devices have the most recent operating system and application patches installed. Your device should be configured to apply updates automatically.
- Do not enable storage of passwords on your device for your SacLink account, or any other credentials you may use to access University information resources.
- Do not access data classified as Level 1 from a device not managed by Sac State.
- Limit access to data classified as Level 2 to no more than 300 records from a device not managed by Sac State.
- If you have a need to access Level 1 or Level 2 data, use of a Citrix desktop is the required method to access sensitive data.
- Please refer to the CSU’s Information Security Data Classification for clarification.
General Device Usage
When using any device (Sac State managed or personal) ensure the following:
- Never share passwords with other staff members.
- Protect your passwords using a strong password manager, such as Sac State’s Enigma service, or a free app such as Password Safe.
- Avoid using external storage devices such as USB drives. If you need to use an external storage device, please ensure the device and the data is encrypted.
- When you are connected to Wi-Fi while on campus, or at another educational institution, you should connect to the eduroam Wi-Fi network using your SacLink credentials.
- Do not store Level 1 data in an unencrypted file location.
- Never send Level 1 data to any recipient via email.