MFA on VPN

Multi-factor Authentication Required for myVPN Starting July 22, 2024 - Learn More

UBC Employees with self-managed devices

Student employees reviewing information on laptop

I am Using a Computer That I Support Myself

Applies to: Faculty, staff, researchers, student employees and contractors with a desktop or laptop computer that is:

  • Owned by UBC, but self-supported/managed
  • Personally-owned, but used for University Business

As you manage your computer, you are required to ensure that the minimum cybersecurity controls are met.  This includes downloading and installing the required software and ensuring that the computer is encrypted. The cost of these controls is being covered centrally - there is no cost to you.

Learn more about the software and what you need to do below. The UBC Cybersecurity team is available for any additional support required by sending an email to privacy.matters@ubc.ca.

Malware Protection and Endpoint Detection and Response (EDR)

Malware protection software is an important tool to help prevent cyberattacks. UBC’s Information Security Standard U7, Securing Computing and Mobile Storage Devices/Media, requires that EDR software approved by the CISO be installed on all UBC-owned desktop and laptop computers, where technically possible.

To meet this requirement, download and install Cisco Secure Endpoint, formerly Cisco Advanced Malware Protection (AMP) for Endpoints, on your computer. The software can be downloaded free of charge through UBC’s Software Downloads site.

NOTE: Computers using VDI, and computers used by staff in the Office of the CIO will have CrowdStrike Falcon Sensor installed instead. Installation of CrowdStrike may also be appropriate for some high-risk VIP or researcher workstations. Please contact privacy.matters@ubc.ca for assistance. A member of the Cybersecurity team will respond to you as quickly as possible with further instructions. CrowdStrike FAQ

Information Security Standard U7 also requires that personally-owned computing devices used for University Business have up-to-date anti-malware software installed at all times, configured to update at least once per day.

You are licensed to install UBC’s recommended and preferred anti-malware solution, Cisco Secure Endpoint, which can be downloaded free of charge through UBC’s Software Downloads site. You can also choose to manually install alternative malware protection software. A list of some popular no-cost options is provided on the UBC IT website.

Automatic Blocking of Malicious Websites

Automatic Blocking of Malicious Websites is also required as per UBC’s Information Security Standard U7, Securing Computing and Mobile Storage Devices/Media.

To meet this requirement, UBC provides Umbrella Roaming Security Module, a DNS firewall that protects computers from malware by preventing them from communicating with malicious websites. Malicious websites can be sites that attempt to install viruses (like ransomware), steal your personal information or, in a worst-case scenario, gain complete control over your computer. The Umbrella module is an extension to the Cisco AnyConnect Secure Mobility Client, which allows for connectivity to the UBC myVPN service.

Umbrella Roaming Security Module will protect your computer regardless of whether it is connected to VPN, and is the same protection that is used on-campus (when connecting to UBC wireless or when using a wired connection) to protect all faculty, staff and students.

PRIVACY NOTE: The Umbrella Roaming Security Module does not censor or prevent access to any content that is not malicious. It is not being used to track internet activity and has been deliberately configured to disable logging, so that it can do the most important activity of all: protect you from malicious sites, while protecting your privacy. Additionally, it will not slow down your internet connection.

Frequently Asked Questions

 
Financial Operations meeting

Encryption

At UBC, we are regulated by the Freedom of Information and Protection of Privacy Act (FIPPA), which requires us to protect personal information from unauthorized collection, use, or disclosure. In support of the law, current UBC policy also requires that all laptop and desktop computers— whether UBC-supplied or personally-owned—used for University Business be encrypted.

Note: If a personally-owned desktop or laptop computer is ONLY accessing UBC Electronic Information and Systems through Remote Desktop Protocol (RDP) or UBC's Virtual Desktop Interface (VDI) sessions then encryption is not required at this time, but is recommended.

Desktop and laptop computers centrally supported by UBC IT will already have full disk encryption, or you can request encryption by contacting your faculty or department’s local IT support.

Visit the Privacy Matters website for options and step-by-step instructions to encrypt your computer.

For IT Support Staff

Technical reference articles can be found on the Cybersecurity Confidential Communications website for Cisco AMP for Endpoints, Umbrella Roaming Security Module and CrowdStrike Falcon Sensor. CWL login required, with UBC VPN or on-campus IP address

Go Further...

Privacy Matters @ UBC

Safety & Risk Services | 2389 Health Sciences Mall
University Counsel | 6328 Memorial Road,
UBC Cybersecurity | 6356 Agricultural Road
E-mail privacymatters@ubc.ca

UBC Crest The official logo of the University of British Columbia. Urgent Message An exclamation mark in a speech bubble. Caret An arrowhead indicating direction. Arrow An arrow indicating direction. Arrow in Circle An arrow indicating direction. Arrow in Circle An arrow indicating direction. Chats Two speech clouds. Facebook The logo for the Facebook social media service. Information The letter 'i' in a circle. Instagram The logo for the Instagram social media service. Linkedin The logo for the LinkedIn social media service. Location Pin A map location pin. Mail An envelope. Menu Three horizontal lines indicating a menu. Minus A minus sign. Telephone An antique telephone. Plus A plus symbol indicating more or the ability to add. Search A magnifying glass. Twitter The logo for the Twitter social media service. Youtube The logo for the YouTube video sharing service. Bell Warning