Remote Access

University employees have the ability, in many cases, to access the University’s information systems from computing devices and locations other than their regular workspace and outside of the University’s network.

Remote access puts systems at higher risk for attacks and unauthorized access because if the system is accessible to employees/faculty and students from outside of the university’s network, it is also accessible to hackers and criminals. This translates to an increased likelihood that university information could be impacted from a confidentiality, integrity, or availability perspective. Additional precautions should be taken by employees when working remotely.

Non-Chico State Device Security

If you access University information systems remotely from a non-Chico State device, the Information Security Office encourages you to consider the following:

• Use anti-virus/anti-malware software and configure it to automatically update, this includes for your mobile device.
• Use current operating systems that provide security patches such as Windows 10 or MacOS 10.16 or newer.
• Configure your operating system and applications to automatically apply updates (e.g., Microsoft updates(opens in new window) or Mac updates(opens in new window).)
• Don’t use the “remember my password” feature when accessing university information on a shared device.
• Use Global Protect VPN to connect to campus resources. Personal computers that cannot install the Global Protect software are not recommended to remotely access campus applications.

Chico State Device Security

• Don’t share or re-use passwords used to access university information and systems.
• Protect passwords used to access University information, and consider using a password manager.
• Use encryption whenever possible when storing University information on portable devices. 7-Zip is free and can be downloaded directly from www.7-zip.org(opens in new window).
• Use anti-virus/anti-malware software to scan portable storage devices, e.g., USB drives or external hard drives when you first plug them in.
• You should not consider your online activity to be private when using public Wi-Fi networks. Use macOS Global Protect OnDemand VPN(opens in new window) or Windows Global Protect OnDemand VPN(opens in new window) to protect your communications when you connect to public Wi-Fi networks.
• Use Eduroam(opens in new window) to connect to Wi-Fi if visiting participating campuses and institutions worldwide. Connect using your Chico State credentials.
• If a device containing university sensitive information is lost or stolen, report the incident to the ISEC department(opens in new window).

Email Security

• Do not send Level 1 information (confidential data) in an email message and be on alert for phishing scams.