Leveraging Security As A Service For Higher Education

Walter Petruska, CISO & Director of Security Services, University of San Francisco

• Leveraging Security as a Service for Higher... (00:00:00)
• The University of San Francisco (00:00:17)
• USF IT Security - History (00:00:52)
• ITS Security Services (SS) Today (00:03:50)
• #1 - Where to Begin? (00:05:54)
• #2 - Risk-Driven Methodology (00:07:02)
• #3 - Resource Availability (00:08:19)
• What USF ITS HAD in Place in 2007? (00:09:20)
• What Did USF Want? (00:10:44)
• #4 - Vendor Selection (00:11:18)
• #5 - Configuring QualysGuard (00:12:08)
• #6 - Map, Group & Assign Priorities (00:12:40)
• Add to Groups & Assign Priorities (00:13:25)
• #7 - Scan & Remediation Tasks (00:13:30)
• Remediation Policy (00:14:27)
• Review Detailed Scan Results (00:15:15)
• Summary of Vulnerabilities (00:15:59)
• Detailed Results (00:17:56)
• Words of Advice (00:18:07)
• Vulnerabilities by Severity Level (00:18:59)
• Open Tickets by Severity Level (00:19:19)
• USF Year-over-Year Change in Vulnerabilities (00:20:05)
• Steady Progress - Improved Measures (00:21:07)
• What Else & What next? (00:21:52)
• Summary (00:23:18)