Service Catalog

Identity and Access Management

Passwords

Password Checker enforces policy 6.01.01 Password Complexity and Change Frequency by querying passwords against a list of passwords that have been exposed in known data breaches. To validate if a password is allowed to be used for a BUnetID password or to check if a password has been exposed visit Password Checker. To change or reset a password visit the Password Reset page.

Single Sign On (SSO)

Single Sign On provides authentication for multiple web applications, without the need for the applications to have access to users' passwords. SSO for web applications hosted in the cloud also has the advantage of not requiring users to remember multiple passwords. To request a new Service Provider (SP) be added to Bradley's SSO, please open a service ticket with the IT Service Desk at 309-677-2964.

Secure Computing

Secure File Sharing

Encryption of Protected data in transit is required per policy 2.02 Secure Transit. Bradley University uses LeapFILE for secure sharing of files with outside entities who do not have a BUnetID. The Office of Information Security maintains a limited number of LeapFILE licenses that can be checked out. To request single, short term, or long term use of a LeapFILE license, please open a service ticket with the IT Service Desk at 309-677-2964.

SSL Certificates

Encryption of Protected data in transit is required per policy 2.02 Secure Transit. Information Security issues certificates from GlobalSign and also manages Bradley's internal Certificate Authority (CA). The Office of Information Security prefers to manage the keys throughout their entire lifecycle, but you can also submit a Certificate Signing Request (CSR). ECC P-384 or RSA-2048 keys are the minimum key sizes allowed. To request a certificate please open a service ticket with the IT Service Desk at 309-677-2964.

Third Party Email Delivery (DMARC, SPF, and DKIM)

The Office of Information Security maintains the configuration of DMARC, SPF, and DKIM DNS records to prevent spoofed email. Information Security works with departments who use third parties to send email on Bradley's behalf to ensure the third party's email platform is configured correctly. To request third party email delivery on behalf of bradley.edu, please open a service ticket with the IT Service Desk at 309-677-2964.

Security Consulting and Education

Security Awareness Training

Security awareness training is hosted in Canvas.

Need Help?

Questions about the content should be directed to the Office of Information Security at 309-677-3041. Technical questions should be directed to the IT Service Desk at 309-677-2964.

Security Incident Response (IR) and Investigation

Malware and Ransomware

If you are affected by ransomware, disconnect your device from the network (unplug your patch cable, disable wireless, enter airplane mode), disconnect removable media (hard drives, USB drives, SD cards, etc.), and leave your device on (do not shut it off nor reboot it). Please open a service ticket with the IT Service Desk at 309-677-2964.

Phishing

Phisnet was created to be a central place to discuss phishing and view a curated list of phishing emails that have been caught by the Bradley community. It also contains a list of red flags to watch for in phishing emails and instructions to make it easier to report phishing emails. Please forward real or suspected phishing emails to phishing@bradley.edu. If you have interacted with a scammer, opened an attachment within the phishing email, clicked on a link within the phishing email, or entered personal information, including your password, on a linked web page, please open a service ticket with the IT Service Desk at 309-677-2964.

IT Strategy, Governance, and Enterprise Architecture

Data Governance

The purpose of Data Governance is to establish and maintain quality of the University’s data by recommending standards and guidelines around the management of data, including classification, lifecycle and integrity of the data. Per policy 4.01.01 Procedures for Protected Data the Data Governance Committee must be informed of all new uses or sharing of Protected Data that are not already cataloged in Data Categories and Roles. For a new use or sharing of Protected Data, create a Data Use Request packet in DocSoup, or contact David Scuffham, the chair of the Data Governance Committee, at 309-677-3041.