SOMIS News & Updates:

• Zimbra users are reporting an increase in spear-phishing attempts. Penn computer administrators will NEVER ask you for your password at any time via any medium. For more information about phishing, please see the following link.
• On Sunday, June 7, 2009 the Zimbra email service will be unavailable beginning at 2:00am until 8:00am as the software is upgraded. Any mail sent during this outage will be queued and delivered once Zimbra is available again.
• Ongoing issues with the UPHS network are slowing or preventing access to certain Penn services such as Kerberos, mail.med email, and BEN Reports. SOM IS is working with UPHS to make them aware of these continuing issues so that they may be resolved.
• Adobe has acknowledged a critical un-patched vulnerability in Adobe Reader versions 9.0 and earlier that can lead to machine compromise. Until a patch is available, SOM affiliates are advised to turn off Javascript from within Adobe Reader. Instructions for doing so are found at the following link.

Home > Services > Information Security

Information Security

SOMIS provides several security services:

• Antivirus software- The University holds a site-license contract for Symantec Anti-Virus, available free of charge to students, faculty, and staff. For more information, go to: http://www.upenn.edu/computing/virus/protect-data.html
• System Updates and patches
• ComputracePlus, the University's program for retrieving lost or stolen laptops.
• Incident response- The SOMIS security officer works in conjunction with the University to handle security incidents, planning, enforcement, and development of security policies at the University and School of Medicine level.
• Encryption software - SOMIS can install PGP Whole Disk Encryption (WDE) for machines containing sensitive data.

User Responsibilities

University systems and data are for use only by the individual granted access. Shared access is strictly prohibited under the University’s Acceptable Use Policy.

Users must abide by the terms of all software licenses.

Users are responsible for ensuring that their critical data is both backed up and secured appropriately. For recommendations and information on SOMIS supported solutions, please contact your LSP.

User accounts MUST be protected with passwords. Passwords should be:

• At least seven characters long
• Use both upper and lower case letters
• Should include a mix of alphabetic, numeric, and special characters

Security Resources

• Secure Share - a web-based application for secure file exchange available to Penn faculty and staff. Requires a valid PennKey and Password
• One Step Ahead - A collection of security tips published in The Almanac, Penn's journal of record.

For more security information, please visit the Unversity’s Computing Security site: http://www.upenn.edu/computing/security/index.php Have a security question or concern? Email medsecurity@mail.med.upenn.edu.

© The Trustees of the University of Pennsylvania | Site Design by SOMIS Web Team