Information Security provides vision and direction for developing and supporting IT security initiatives at Carleton. The group provides leadership in the development and operation of structures, programs and policies that address the needs of Carleton’s information assets and how they are protected.
Key areas of accountability are:
- Ensuring that appropriate and reasonable safeguards are employed to detect and protect against potential threats to IT assets
- Establishing and evolving an appropriate security posture that balances risks, investment and safeguarding of assets against the university’s ability to operate effectively and efficiently; and,
- Evaluating, planning and delivery of the security aspects of the university’s network infrastructure
As part of an ongoing program to raise the level of security awareness at Carleton University, the Information Security Division provides security awareness reminders to the campus community on a regular basis.
Report Suspicious Activity
To notify the Information Security team of suspicious activity, contact the ITS Service Desk at email@example.com or call 613-520-3700.
Phishing is the act of contacting people via email, telephone, or text message while impersonating an individual or organization with the intention of stealing private information and data to commit identify theft and financial theft. If you receive a phishing email do not respond to it, move it to your junk folder (this will mark it as spam), and forward it to the ITS Service Desk.
Duo: Our Two-Factor Authentication Solution
Duo is a two-factor authentication solution aimed at protecting your account from illicit login attempts. Once Duo is enabled you will log into Carleton systems using something you know (your MyCarletonOne password) plus something you have (your mobile phone, work phone, home phone or tablet). Learn more about Duo.
The Virtual Private Network (VPN) client software is required for access to Carleton University resources that are restricted to on-campus use. The VPN client software provides a secure encrypted channel from your home to the campus.
Ransomware is a type of malware (malicious software designed to infiltrate your computer) that results in the encryption of computer files. Once the files are encrypted these attackers then demand a form of ransom from the computer owners in exchange for the decryption key. Read our guidelines on protecting your files from ransomware or other data loss.
Each faculty and staff member can install Trend Micro antivirus on up to 5 personal devices (PC, Mac, Android or iOS) at no charge. This endpoint security software provides you with a broad range of threat protection – it safeguards your data from malware and ransomware, allows you to browse the web safely and provides protection from viruses.
Residence PC Protection
Proper protection against computer viruses is required so that you have an operational network to support your academic studies. Learn more about how to protect your computer here.
Latest Security Notices
Thursday, February 21, 2019
Network Printing Changes Coming to Robertson Hall and CTTC
As of Monday February 25, staff and faculty in Robertson Hall and CTTC must connect to network printers via ITS print server and no longer by IP address. This change will mainly affect Mac and Unix users as most Windows users already connect to network printers via the print server. This change ensures only authorized users can connect...
Monday, January 28, 2019
Managing your Privacy
Today, January 28, is Data Privacy Day. It is an international effort to empower individuals and business to respect privacy, safeguard data and enable trust. Data about you can be used in a variety of ways, sometimes in ways you wouldn't expect or even approve. That's why it's important to understand the value of...
Tuesday, January 22, 2019
Tackling Phishing at Carleton
Phishing is an attempt of acquiring personal or sensitive information such as credit card information, passwords, etc. by sending an email that appears to be from a legitimate company. Many people are wise to the typical phishing email; it calls to immediate action, it asks for your password, it’s riddled with spelling and grammatical...
Thursday, January 17, 2019
Upcoming IT Security Awareness Workshop
Keeping our systems and data safe from IT security threats is all of our responsibility. Join one of our Security Managers as he discusses security awareness and how to defend yourself against some major security threats. Intended Audience: Staff and Faculty When: Monday Jan 28 from 9-10 am Where: 617 Robertson Hall In this...
Wednesday, January 9, 2019
Duo Two-Factor Authentication Contest – You Could Win $100 on your Campus Card
Duo is now available for all Carleton staff and faculty. Duo is a two-factor authentication solution aimed at protecting our accounts from illicit login attempts. Congratulations to Michael Radcliffe in Campus Safety Services for winning the December draw! He set up Duo on his MyCarletonOne account and won $100 on his Campus Card. We...
Monday, January 7, 2019
Spotlight on IT: 2018 Year in Review
This special edition of Spotlight on IT focuses on some of the great work done in our IT department over the past year. We wanted to share what we have been up to in our efforts to support and grow IT at Carleton University. We have just released our 2018 Year in Review. This report...
Friday, January 4, 2019
Beware of Phishing Email circulating on campus – Appears to be from Carleton University Senior Manager!
Beware of phishing emails circulating on campus with subject of "Rafik Goubran's invitation is waiting for your response". This is a phishing email and should be deleted immediately. If you respond to these messages, you may be asked to purchase gift cards or bitcoins for the individual. Do not accept invitation, do not send gift...
Thursday, January 3, 2019
Job Offer / Bitcoin Scam – Targeting Students
Beware of a "Job Offer" or "Bitcoin" scam circulating on campus. The scam gets students to upload their resumes to a job site and then they are contacted by potential "employers" offering them a job. All they need to do is deposit money into their bank account, withdraw the money, purchase bitcoin and then...
Wednesday, December 5, 2018
OVPRI and ITS Collaborate to Support Researchers
The Office of the Vice-President (Research and International) (OVPRI) and Information Technology Services (ITS) are collaborating on a number of initiatives to enhance IT support for researchers. New Software Licensing Agreements Carleton has acquired new university-wide licenses for the IBM SPSS software and NVivo Plus. Both are now available...
Wednesday, December 5, 2018
Staff and Faculty: Set Up Duo for your Chance to Win $100 on Your Campus Card
Starting this winter, ITS will begin rolling out Duo, our two-factor authentication solution, to the Carleton community. Two-factor authentication is an IT security solution that protects your account from illicit login attempts. Once enabled, you will login to select Carleton systems using something you know (your MyCarletonOne password),...
Monday, December 3, 2018
Shopping Online This Holiday Season? Be Careful of These Three Things
How is it December already?! Chances are you have some holiday shopping to do (or start), and if you’re like me you’ll turn to online shops. It's fast, easy, convenient, and, in some cases, I can have my purchases wrapped and shipped directly to my loved ones. But before you open that browser, here...
Monday, November 26, 2018
Beware of Phishing Email circulating on campus – Appears to be from Carleton University President!
Beware of phishing emails circulating on campus that appears to be from the Carleton's President or other senior managers, that often start with 'are you free' or 'are you available'. This may be a phishing email and should be deleted immediately. If you respond to these messages, you may be asked to purchase gift...
Monday, November 19, 2018
Phishing Emails Circulating on Campus: Subject of “Part-Time Personal Assistant Needed”
Beware of phishing emails circulating on campus with subject of: "Part-Time Personal Assistant Needed". This is a phishing scam/email and it should be deleted immediately. Do not do not respond to the message, do not send a text message to the number listed in the email, and do not provide your name or email...
Wednesday, November 14, 2018
Computer Purchases for Business Use
Are you in need of new tablet, desktop, or notebook for business purposes? Be sure to order an ITS recommended system from one of our preferred vendors. What is a Preferred Vendor? A preferred vendor has an established contract with Carleton University for a specific product list and contracted price. These contracts have been...
Thursday, November 8, 2018
Inside ITS: Talking IT Security
This week Mary Kathryn sits down with Paul Ungoed, one of our Information Security Managers in ITS. In this chat Paul talks about what he does, the best thing you can do to protect yourself online, some ongoing and upcoming IT security workshops, and a new co-op position available. https://www.youtube.com/watch?v=o3SusXOXA7s...
Monday, November 5, 2018
Don’t Get Phished
Be wary of unsolicited email that asks for personal information, or tries to convince you to click on a web link to update personal information. These are often phishing emails. Phishing is a method to trick people into providing sensitive information such as banking and credit card details as well as passwords. This personal...
Wednesday, October 31, 2018
Inside ITS Video: Duo Two-Factor Authentication Coming to Finance and Administration
Beginning November 12, ITS will be rolling out Duo to all Finance and Administration professional services staff. Duo is a two-factor authentication solution aimed at protecting your account from illicit login attempts. Once Duo is enabled you will login to Carleton systems using something you know (your MyCarletonOne password) plus...
Tuesday, October 30, 2018
Beware of Phishing Emails circulating on Campus – Appears to be from Carleton!
Beware of phishing emails circulating on campus with subject of: "Urgent Opportunity" or "Document Pending" and appears to be from Carleton University. These are phishing emails and should be deleted immediately. Do not clink on the link within the body of the message, do not respond to the message, and do not provide your...
Tuesday, October 30, 2018
Beware of scam emails – Appears to be from a Carleton Director or Manager
Beware of scam emails circulating on campus with subject of: "Gift cards" and appears to be from Carleton University Director or Manager. This is a scam/phishing email and it should be deleted immediately. Do not reply to the message, and do not send gift cards or gift card information to the sender. If you...
Monday, October 22, 2018
Tips to Practice Safe Browsing
It’s Cyber Security Awareness Month! This is a time to help better understand the cyber threats we face online and the simple steps we can take to minimize those risks. This week we’re talking about cyber security beyond Carleton. Taking control of your own cyber security begins with understanding one simple fact: the Internet can be...
Monday, October 15, 2018
Protect your Password with Two-Factor Authentication
It's Cyber Security Awareness Month and this week we're talking about protecting your password using two-factor authentication. According to a Verizon report, 81% of data breaches are due to compromised passwords. You can have the most strict password policy that stipulates complex passwords and mandatory password changes, but if people are...
Tuesday, October 9, 2018
5 Ways to Spot a Phishing Attempt
It’s Cyber Security Awareness Month! This is a time to help better understand the cyber threats we face online and the simple steps we can take to minimize those risks. This week we’re talking about email. Email phishing scams can trick you into opening attachments or giving up personal information. They appear to be emails from...
Friday, October 5, 2018
New Acquisition of Cellular Services Policy
Carleton University manages commercial agreements with wireless providers. Effective June 1, 2019, all full-time faculty and staff requiring a mobile device for business purposes are required to use the University’s centrally managed corporate account. Carleton University permits the use of a corporate device for personal use providing it is in...
Thursday, October 4, 2018
Spotlight on IT: Cyber Security
Hello everyone and welcome to Spotlight on IT, our quarterly e-newsletter spotlighting different trends and topics in the IT world. If you would like to receive this e-newsletter in you inbox, go here to subscribe! This month is Cyber Security Awareness Month. This is an internationally recognized campaign focused on helping us all be more...
Tuesday, October 2, 2018
Confidential Printing Now Available for Staff and Faculty
A new printing option called “Confidential Printing” is now available and mapped to all Staff and Faculty CUNET computers. In a standard printing environment, a job is sent directly to the printer for immediate printing. If the printed material is forgotten it not only wastes ink and paper, but presents a security risk if...
Friday, September 28, 2018
Inside ITS: Cyber Security Awareness Month
Welcome to Inside ITS. This week Mary Kathryn talks about Cyber Security Awareness Month and the upcoming Coffee Break with Web Services event....
Friday, September 28, 2018
Cyber Security: Our Shared Responsibility
Cyber Security Awareness Month is an internationally recognized campaign held each October to inform the public of the importance of cyber security. This campaign is focused on helping us be more secure online, by knowing simple steps to take to protect ourselves, our families, our workplace and our devices. Humans are the first line...
Tuesday, September 25, 2018
Carleton is Participating in Cyber Security Awareness Month
Next month we will be participating in Cyber Security Awareness Month. This is a time to help protect ourselves against a wide range of online threats. Our month long campaign is designed to help you better understand the cyber threats you face online and the simple steps you can take to minimize those risks....
Monday, September 24, 2018
Beware Phishing Emails – Appears to be from Carleton University!
Beware of phishing emails circulating on campus with subject of: "Action Required: Delivery status Notification (failure)" and appears to be from Carleton University. This is a phishing email and it should be deleted immediately. Do not clink on the link within the body of the message, do not respond to the message, and do...
Thursday, September 6, 2018
Phishing Emails circulating on Campus!
Beware of phishing emails circulating on campus with subject of: "Part-Time Personal Assistant Needed". This is a phishing email and it should be deleted immediately. Do not respond to the message, do not text, do not call, and do not provide your email and/or account information. If you have already responded to this email,...
Tuesday, September 4, 2018
Protect your Password with These 5 Tips
As we step into the new academic term we'd like to remind you of the importance of password security. Here at Carleton students, staff, and faculty are provided a MyCarletonOne account. This account grants access to many services - cuLearn, Carleton Central, the MyCarleton Portal, the Intranet for staff and faculty, CU Wireless, workstations...
Friday, August 31, 2018
Design Change Coming to Carleton Central Login Page
Please note: this initiative has been postponed. We will inform the community of the new date once it's confirmed. During the week of September 10, ITS will be updating the Carleton Central login webpage (central.carleton.ca). This is simply a design change and no action is required. This change has no impact to Carleton Central...
Tuesday, July 31, 2018
August IT Security Tip: Protect Your Personal Information
In this month's IT security tip we're talking about protecting not only your personal information, but your online identity as well. What you post online can come back to haunt you. Here are four simple tips to help you protect your personal information: Limit the amount of personal information you post when using social...
Monday, July 30, 2018
Today: Banner PIN Removal for Carleton Central
Starting today (July 30th) users will no longer be able to login to Carleton Central using a Banner PIN. The direct login to Carleton Central (central.carleton.ca) will remain the same except users will only have the option to login with their MyCarletonOne credentials. This change is being done to enhance our security and to provide the user...
Tuesday, July 10, 2018
Carleton’s Computer Purchase Program
Need a computer? Faculty and staff can choose from over 30 recommended systems from our preferred vendors. All of the recommended systems are fully supported by ITS, have Carleton’s standard image adapted to them, and meet all of our ITS security and CUnet domain membership requirements. In addition, ITS recommended systems come with 3...