Batten Down the Hatches: Implementing Campus-Wide Vulnerability Management

Thursday, April 12 | 2:20PM–3:20PM ET | Baltimore Ballroom A, Fifth Floor
Session Type: Breakout Session
Delivery Format: Interactive Presentation
Managing vulnerabilities on a university campus with a variety of services operating under a loosely federated IT organizational model can be challenging. At UC Davis, we have implemented a campus-wide vulnerability management program (VMP) that addresses these unique requirements. Our program includes scanning, endpoint configuration, and change management. This is made practical using an all-hands-on-deck approach; all IT admins can manage VMP services within their local department. Additionally, the SOC uses a campus-wide baseline policy to scan the entire campus and centrally track patching efforts. Vulnerability and remediation reports filter up to department leadership in the organization hierarchy.

Outcomes: Understand how a practical campus-wide VMP is designed that takes the institutional structure into account * Learn how a SOC scans the entire campus IP address space, including custom scans tailored to individual departments, with limited labor resources * See a live demo of the UC Davis scanning tool


  • Sophon Im

    Security Compliance Lead, University of California, Davis
  • Jeff Rowe

    Senior Security Analyst, University of California, Davis

Resources & Downloads

  • UCDISOVMP Apr062018 semifinal

    40 MB, pdf - Updated on 10/25/2018