Single Sign On provides authentication for multiple web applications, without the need for the applications to have access to users' passwords. SSO for web applications hosted in the cloud also has the advantage of not requiring users to remember multiple passwords. To request a new Service Provider (SP) be added to Bradley's SSO, please open a service ticket with the IT Service Desk at 309-677-2964.
Secure File Sharing
Encryption of Protected data in transit is required per policy 2.02 Secure Transit. Bradley University uses LeapFILE for secure sharing of files with outside entities who do not have a BUnetID. The Office of Information Security maintains a limited number of LeapFILE licenses that can be checked out. To request single, short term, or long term use of a LeapFILE license, please open a service ticket with the IT Service Desk at 309-677-2964.
Encryption of Protected data in transit is required per policy 2.02 Secure Transit. Information Security issues certificates from GlobalSign and also manages Bradley's internal Certificate Authority (CA). The Office of Information Security prefers to manage the keys throughout their entire lifecycle, but you can also submit a Certificate Signing Request (CSR). ECC P-256 or RSA-2048 keys are the minimum key sizes allowed. To request a certificate please open a service ticket with the IT Service Desk at 309-677-2964.
Third Party Email Delivery (DMARC, SPF, and DKIM)
The Office of Information Security maintains the configuration of DMARC, SPF, and DKIM DNS records to prevent spoofed email. Information Security works with departments who use third parties to send email on Bradley's behalf to ensure the third party's email platform is configured correctly. To request third party email delivery on behalf of bradley.edu, please open a service ticket with the IT Service Desk at 309-677-2964.
Questions about the content should be directed to the Office of Information Security at 309-677-3041. Technical questions should be directed to the IT Service Desk at 309-677-2964.
Security Incident Response (IR) and Investigation
Malware and Ransomware
If you are affected by ransomware, disconnect your device from the network (unplug your patch cable, disable wireless, enter airplane mode), disconnect removable media (hard drives, USB drives, SD cards, etc.), and leave your device on (do not shut it off nor reboot it). Please open a service ticket with the IT Service Desk at 309-677-2964.
Phisnet was created to be a central place to discuss phishing and view a curated list of phishing emails that have been caught by the Bradley community. It also contains a list of red flags to watch for in phishing emails and instructions to make it easier to report phishing emails. Please forward real or suspected phishing emails to email@example.com. If you have interacted with a scammer, opened an attachment within the phishing email, clicked on a link within the phishing email, or entered personal information, including your password, on a linked web page, please open a service ticket with the IT Service Desk at 309-677-2964.
IT Strategy, Governance, and Enterprise Architecture
The purpose of Data Governance is to establish and maintain quality of the University’s data by recommending standards and guidelines around the management of data, including classification, lifecycle and integrity of the data. Per policy 4.01.01 Procedures for Protected Data the Data Governance Committee must be informed of all new uses or sharing of Protected Data that are not already cataloged in Data Categories and Roles. For a new use or sharing of Protected Data, create a Data Use Request packet in DocSoup, or contact Ronald Janik, the chair of the Data Governance Committee, at 309-677-4190.