Information Security Tips and Information

ITS provides information on the latest tips and best practices for maintaining online security. See the information in the right column of this page and for additional security news and tips, see the ITS Security Blog.

Personal Computer Antivirus/Security Software

All members of the USC community should run security software on their PCs or Macintosh computers.  ITS provides Sophos Endpoint Security software for free to USC faculty, staff and students.  Sophos Endpoint Security is designed to detect, remove, and prevent the spread of viruses, spyware, and other security risks.

• To download Sophos Endpoint Security, go to software.usc.edu/antivirus
• For more information on Sophos Endpoint Security software go to itservices.usc.edu/security/sophos/

Information Security Services

ITS’s Office of Information Security provides a range of information security services for the USC community.  These include:

• Server and Endpoint Vulnerability Assessment and Management
• Automated Scanning of Servers and Web applications
• Web Application Security Assessments and Remediation
• Digital Forensics
• Information Risk Assessments
• Security Policies, Guidelines, and Best Practices Development
• Department Firewall Management
• Department VPN Management
• PCI-DSS Compliant Credit Card Processing Environment for USC
• Network Monitoring, Intrusion Detection, and Incident Responses
• Archiving and Search of Server Logs
• Spam and Phish Filtering of All USC Email
• Management of Central USC Enterprise Accounts

For more information on these services, see the Information Security Services page.

Duo Two-Factor Authentication

Two-Factor Authentication, or 2FA, provides enhanced account security by requiring a second authentication method in addition to your password. 2FA protects your account even if your password is compromised.

USC has enabled Duo Two-Factor Authentication on certain systems that contain personal or sensitive information. For more information on 2FA, see itservices.usc.edu/duo.

To enroll in Duo 2FA, go to the Duo Authentication website.

Cybersecurity Awareness Training

Securing the Human is video-based cybersecurity awareness training provided by the information security training organization SANS and is currently available to and required for USC faculty and staff.

Report an Information Security Incident

To report an information security incident such as suspicious emails or suspected unauthorized access to your computer, please contact the ITS Customer Support Center.