UMass Boston

Information Security

The ISO runs various projects and operates numerous tools and services to safeguard UMass Boston’s personal and institutional data, all in pursuit of our goal of preventing the loss or theft of our information assets. We utilize every resource available in our commitment to maintaining an impenetrable system of information security at UMass Boston.

Information Security Program:

• UMass Boston Written Information Security Program (WISP)

Information Security Policies:

• UMass Boston Information Security Policies (pdf)
• Information Technology Acceptable Use Policies (AUP) (pdf)

Information Security Newsletters:

• Secure IT Newsletter March 2024 (pdf)

How You Can Help

Technology, especially information technology, is essential to the purpose and mission of higher education at UMass Boston, and the university needs to know its data and informational infrastructure is safe. To that end, in addition to the work we do behind the scenes, ISO Staff offer many services and features that students, faculty and staff can access right from this page. Taking advantage of some of these options is a great way to participate in our university’s information security efforts, and keep yourself safe.

One of the most basic things the ISO must do is prevent against computer viruses. Visit the Antivirus page to learn about antivirus resources available as well as tips for prevention and protection. Secure IT is the IT security education program that helps the UMass Boston community stay informed and up to date on security issues. Secure IT courses keep everyone here at the top of the class in information security!

We also utilize many tools to prevent against phishing attacks, including The "EXTERNAL SENDER" Label Extended Validation SSL Certificates. Learn more about protecting yourself from phishing on Phishing - Don't Get Scammed!

Staff can see how Data Encryption can help when working with Personally Identifiable Information (PII). A more recent security function that ISO has also implemented is Multi-Factor Authentication, which is an added layer of safety if one of your Passwords has been hacked or figured out.

Education and awareness are crucial to information security, both at the institutional level and for individual users. Everyone should be familiar with Network Server Security Requirements and Procedures, and users can protect personal information and their computers by reviewing Security Guidelines, Social Media Security, and Windows Security Updates. It also never hurts to scan your computer every so often and catch up on tips to keep your computing experience safe by clicking  Scan Your Computer/Safe Computing Tips. Finally, see Web Browser Settings to learn how to clear out your browser history and cache from both Windows and Mac computers, and Junk MailHelp to see how to keep your inbox free of spam and other unwanted emails.

As much as we in the Information Security Office wish it were possible, we can’t do cybersecurity all by ourselves. It must be a campus-wide effort, participated in by the entire UMass Boston community. The good news is that the community HAS always participated and made valuable contributions to our ongoing cybersecurity efforts. The Beacons always come through and the ISO is grateful for all that you do. Thank you!