. .

Recent News

The Compensating Controls & Exceptions Form is up

Here are the Compensating Controls & Exception process submision forms for the UCSS.

GeoTrust SSL Certificate Purchasing Explained

Instructions on how to order SSL Certificates through GeoTrust can be found on this page

Security Boot Camp outline up for comment

The CIO Security Group is developing an "Information Security Boot Camp" program that will be taught later this year. Comment on the proposed outline is encouraged during development. Check out the basic outline here

Check the Blackhole List

To see the current Blackhole listing click here

Report an Incident

To report a security breach or other security incident send an email to Security@osu.edu

Services We Provide

  • Network Vulnerability Scanning - We regularly scan hosts on the OSU networks with a variety of tools and report the results to their respective system and network administrators in the hopes that they will fix the problems listed.
  • Outreach and Education - We offer presentations and instruction/outreach to address university members Information Security needs. Outreach is targeted to the requesting group and offered free of charge to any university student or staff group, department or college.
  • Consulting - We consult with groups upon request to perform security audits, address security problems, improve the security of existing networks, and assist in the secure design of new networks or computing systems.
  • Incident Response - If you've detected a security problem involving any Ohio State University resources, we'd like to know about it, and can help you with incident response. We can look through our network traffic logs to determine how, when and from where the incident occurred, and where else they went. We can also assist with evidence collection and preservation, and with securing the compromised hosts after the incident.
  • Logging Records - We have set up a secure mechanism for logging network activity and system events for use within the networking group. We'd be happy to talk to you about how we do it so that you can do something similar at your site.
  • Software and Other Tools - There are many software packages that can help you secure your hosts. This includes a site license for the ISS Internet Scanner, discounted prices for the ISS System Scanner tool, and others.
  • Special Events & Meetings - Part of our goal is to promote the use of good security mechanisms and procedures and to promote awareness of security issues. One way we try to accomplish these goals is through our monthly security meetings, and other special events we host. Notes from some past meetings are available for your review via either the events page or media page.
  • Mailing Lists - We also run several mailing lists that you might be interested in. See the OSU section on the links page for more details.