Based on recent electronic attacks on our college’s web servers, the Engineering Network Services (ENS) and Data Analytics and Technical Infrastructure (DATI) teams of the Walter Scott, Jr. College of Engineering have developed a set of policies to secure our College’s web servers.
Our web environment is complex, from simple HTML web pages to the sites managed by our DATI team through the WordPress software package. These security policies are system-wide for every site, page, and file hosted on our servers, regardless of how a file was created.
Policies include, but are not limited to:
The DATI team sends weekly e-mail messages to WordPress site administrators listing out-of-date elements: plugins, scripts, etc., which must be addressed in a reasonable time by the site administrator.
WordPress and website administrators have the option to move their sites under the College’s WordPress umbrella, effectively moving the responsibility for security updates to the DATI team. If the site owner agrees to the move, the site will be subject to the CSU design and branding guidelines, for which the Director of Communications and communications staff will provide assistance.
Version 1.5; Implemented 2/1/2019
Dave McLean, Dean, Walter Scott, Jr., College of Engineering
Mark Ritschard, Assistant Dean
Kelley Branson, Director, Engineering Network Services (ENS)
Jim Jensen, Director, Data Analytics and Technical Infrastructure (DATI)