Faculty & Staff Safe Computing Tips

The Information Security Office (ISO) recommends the following safe computing practices, to protect the data and computers of the Carnegie Mellon community members, and to avoid problems associated with malware and break-ins:

• DO perform regular back-ups of your data. In the event of a compromise, your restore process will be greatly simplified
  www.cmu.edu/computing/doc/os/recovery/prepare.html 

• DO use a strong password and remember to change it every 60-90 days; for details see
  www.cmu.edu/iso/governance/guidelines/password-management.html

• DO update and run anti-virus software; for details, see
  http://www.cmu.edu/computing/security/

• DO install and run Identity Finder software to find, protect and remove personally identifiable data stored on your computer; for details see
  http://www.cmu.edu/computing/security/idfinder/index.html.

• DO perform regular updates of your operating system, web browser and other applications. You can find instructions to update your operating system, under the operating system title found at http://www.cmu.edu/computing/doc/security/index.html

• DO exercise caution when opening attachments via email, chat rooms, and on social networking sites. Such attachments may be carrying malware; for details see
  www.cmu.edu/computing/doc/security/general/emailattach.html

• DO follow the ISO procedure for responding to a compromised computer; for details see
  www.cmu.edu/iso/governance/procedures/compromised-computer.html

• DO exercise caution when using file sharing P2P applications. Without secure settings, your confidentiality, as well as university data, could be compromised; for details, see
  http://www.cmu.edu/computing/doc/network/fileshare/overview.html.

• DON'T provide your user ID, password or other confidential information in an email or in response to an email. A request to do so is likely a phishing attempt.

The ISO encourages the university community to visit the ISO Website often at https://www.cmu.edu/iso/ for security alerts, news, services, safe computing practices, training events, polices and guidelines and help with securing your computer.