Sophon Im
Security Compliance Lead,
University of California, Davis
Batten Down the Hatches: Implementing Campus-Wide Vulnerability Management
Thursday, April 12, 2018 | 2:20PM–3:20PM ET | Baltimore Ballroom A, Fifth Floor
Session Type:
Breakout Session
Delivery Format:
Interactive Presentation
Managing vulnerabilities on a university campus with a variety of services operating under a loosely federated IT organizational model can be challenging. At UC Davis, we have implemented a campus-wide vulnerability management program (VMP) that addresses these unique requirements. Our program includes scanning, endpoint configuration, and change management. This is made practical using an all-hands-on-deck approach; all IT admins can manage VMP services within their local department. Additionally, the SOC uses a campus-wide baseline policy to scan the entire campus and centrally track patching efforts. Vulnerability and remediation reports filter up to department leadership in the organization hierarchy.
Outcomes: Understand how a practical campus-wide VMP is designed that takes the institutional structure into account * Learn how a SOC scans the entire campus IP address space, including custom scans tailored to individual departments, with limited labor resources * See a live demo of the UC Davis scanning tool
Outcomes: Understand how a practical campus-wide VMP is designed that takes the institutional structure into account * Learn how a SOC scans the entire campus IP address space, including custom scans tailored to individual departments, with limited labor resources * See a live demo of the UC Davis scanning tool
