Scribd
Upload
1K views

Ids Ips Audit Checklist

This document is an endpoint security checklist that external collaborators must complete when accessing a secure UW-Madison Box folder. It requests information about the endpoint including hostname, location, operating system, and supporting organization. It then lists 14 security controls and asks the user to initial each one that is present on their endpoint. Completing the checklist helps ensure minimum security standards are met on devices accessing sensitive university data.

Uploaded by

hakim hb
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
1K views

Ids Ips Audit Checklist

This document is an endpoint security checklist that external collaborators must complete when accessing a secure UW-Madison Box folder. It requests information about the endpoint including hostname, location, operating system, and supporting organization. It then lists 14 security controls and asks the user to initial each one that is present on their endpoint. Completing the checklist helps ensure minimum security standards are met on devices accessing sensitive university data.

Uploaded by

hakim hb
Copyright
© © All Rights Reserved
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 1

Endpoint Security Checklist Page 1 of 1

Document Number: Document Owner: Originally Published: Revision Date: Revision Version:
GRC-0001 Peter Vander Velden 1/1/2019 8/16/2019 1.1.0

Overview
External collaborators must complete this form attesting to security controls on the endpoint used to
access a UW-Madison secure Box folder.
Endpoint Primary
Hostname: ______________________ User: ________________________
Endpoint User’s
Primary Location: ______________________ Organization: ________________________
Operating User’s
System: ______________________ IT Support Org: ______________________

Please review the following cybersecurity controls. If a control is present on the endpoint, initial in the
corresponding box. If the control is not present, DO NOT initial.
Security Control Initials
1. Host-based vulnerability management and configuration compliance software is
installed and enabled.
2. Vulnerability scans of the endpoint are completed (at least) monthly.
3. All available operating system and application security patches are installed.

4. Anti-virus / anti-malware software is installed and enabled.


5. Host-based firewall is installed and enabled.
6. Host-based Intrusion Prevention System (IDS/IPS) is installed and enabled.
7. Primary user DOES NOT have administrative rights on the workstation.
8. Whole-disk encryption solution (hardware or software) is installed and enabled.
9. Encryption solution and policies are managed centrally, not by the primary user.
10. Primary user logs off or locks the endpoint when it is unattended.
11. Endpoint is configured to automatically lock the screen when inactive for 15 minutes.
12. Password policies are enforced that adhere to best practices (length and complexity
minimum requirements, rotation required, no password reuse permitted).
13. Primary user completes (at least) annual cybersecurity awareness training.
14. Other security practices and compensating controls, please list:

Completed by (print): _________________ Signature: _____________________ Date: _______

**In the event the workstation or user becomes compromised (via malware, exploited vulnerability, leaked credentials, etc), or
the workstation is stolen/replaced, contact the UW-Madison Office of Cybersecurity at cybersecurity@cio.wisc.edu.

Office of Cybersecurity
University of Wisconsin–Madison 1210 W Dayton Street Madison, Wisconsin 53706
Email: cybersecurity@cio.wisc.edu https://it.wisc.edu/about/division-of-information-technology/strategic-operations-departments-people/cybersecurity/

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy