Body
Endpoint Equipment Standards
Purpose: This standard establishes guidelines for typically issued college-provided endpoints (laptops and desktops).
Scope: This standard applies to all faculty, staff, and contractors who require a college-issued device.
Device Standard:
- ITS will only provide a single endpoint for employee use based on the current equipment standards.
- Employees must use only company-provided endpoints for work-related tasks.
- Personal endpoints are strictly prohibited from connecting to the college network for work-related activities.
Security Measures:
- All college-provided endpoints must regularly be connected to the college network to receive security patches and updates.
- Endpoints must be configured to utilize the Central Piedmont domain.
- Administrative privileges to the device will not be provided.
Data Encryption:
- All mobile endpoints (laptops and tablets) must enable local data storage encryption.
Reporting Security Incidents:
- Employees must promptly report (within 24 hours) any security incidents, lost devices, or suspicious activities to ITS.
- ITS’ Cybersecurity must immediately enact the Incident Response Plan for these reported activities to initiate appropriate security measures.
Review and Updates: The ITS Cybersecurity team will periodically review this standard to ensure its effectiveness. Any necessary updates or modifications will be communicated to all relevant parties.
Approval: This standard is effective upon approval by the Chief Information Officer.