About USPM @ UCSB
UCSB’s IT vision focuses on strengthening information assurance. A unified security posture management initiative will increase endpoint protection by providing campus with visibility to an inventory of assets with relevant data. IT Units can not proactively manage or protect assets they do not know about. Additionally, the cyber security investment plan (CSIP) includes requirements to expand and improve visibility and vulnerability management.
The goal of this initiative is to increase the security posture and decrease the risk profile for IT Units across campus by providing a unified view and inventory of all University assets that can be used to increase cybersecurity protection against bad actors. We aim to provide a prioritized list of vulnerabilities for mitigation by responsible asset owners and a developed workflow for risk exception. At the completion of this project, the IT staff responsible for vulnerability management and asset visibility for their Unit will have received training and access to the systems.
Benefits for Users
- Unified view of assets and greater insight to technical landscape
- Ability to prioritize patching efforts, Trellix (EDR) and Nessus Agent installation, and application of firewall rules to reduce attack surface.
- Mitigate risk to the campus by focusing on the Identify and Protection functions of the NIST Cybersecurity Framework.
