OIT recently published new guidelines to help campus IT staff comply with the Endpoint Protection Standard (EPS) security requirements.
The EPS outlines the minimum requirements, or security controls, for information system components that connect to NC State’s network, including university-owned resources and devices and non-university owned resources and services. It applies to users of those components.
The EPS guidelines outline the impact of the following security requirements and provide a list of references as well as best practices for Windows and Mac OS endpoints:
- Approved configuration management systems
- Antivirus and anti-malware
- Authentication
- Sensitive Information Identification and Remediation
- Software inventory
Please note: With the exception of approved configuration management systems, best practices for Linux endpoints will be available in the future.
Additional Guidance
Guidance for the following EPS security controls will be documented in the future. See EPS — Phases of Implementation for details.
- Least privilege access
- Encrypted network communication
- Host-based firewall
- Full disk encryption (with university key escrow)
- Web reputation filtering
- File integrity monitoring
- Application control
To reference the guidelines, see Endpoint Protection Standards – Guidance.