When it comes to protecting Trinity College Dublin from cyber attacks, every step counts. Although last week's global IT outage wasn't a cyber attack, it highlights the importance of reviewing updates and security patches before they are applied to IT services and systems. Our current approach precisely embodies this principle.
Put simply, we maintain system stability and security by testing regular patches and updates first; then, we release patches and updates in a controlled and incremental way. This method allows us to pause release or even rollback if any issues arise.
Introducing your new Endpoint Management software
As part of our Cyber Security Programme, we are introducing a more secure and stream-lined approach to anti-virus protection, operating system updates, and device encryption for Trinity managed Windows and macOS computers (referred to as ‘Endpoints’). Please be assured that while we are replacing the current endpoint management solutions, we're maintaining our 'test and release' ethos.
The new systems improve the security and management of staff Windows and macOS computers on the University wired network, Staff Wi-Fi, and Staff VPN, as well as postgraduate devices on the main wired network. Our endpoint management systems monitor these computers for signs of malicious software or actions, ensuring our IT systems, devices, and University data remain secure and functional.
From 23rd July 2024 onwards, Windows PCs and Apple Macs ordered from the approved University suppliers will be delivered ready to enrol in Microsoft Intune; making it quicker and easier for you to get started with your new computer. These computers will be setup with Microsoft Defender for anti-virus and threat prevention.
IT Services has started migrating various areas to these new systems and will continue this work over the coming months. Once the migration work is complete, there should be no change to day-to-day activities on computers being used in your area.
What are the benefits of moving to these new endpoint management solutions?
Enhanced security of managed computers
- The new cloud-based device management systems will allow us to manage encryption, anti-virus and operating system updates whether you are on campus or not; helping you to stay secure no matter where the device is being used.
Our current endpoint solutions can only manage devices connected to the Trinity network or using the staff VPN. Our new solution is cloud-based; this means that it can reach enrolled devices that are on your home Wi-Fi, as well as devices on the University network.
- Should a University-owned computer be lost or stolen, we will have the ability to lock down that computer remotely or wipe the disk entirely if necessary to protect University information.
For example, if your device was lost or stolen, then we were able to wipe email data only. Now, IT Services will have a centralised record of all University-owned computers through their entire life-cycle; the whole computer can be managed and so all of the data on your device can be too.
- The move to these new cloud-based endpoint security systems will provide a platform to introduce further significant cyber security protections.
/prod01/channel_3/media/tcd/itservices/images/news/sharepoint-header-(12).png)