Endpoint Management Project

An endpoint device is an internet-capable computer hardware device on a TCP/IP network. This includes but is not limited to computers, laptops, smartphones, tablets, thin clients, printers, and other specialized hardware such as point-of-sale terminals and smart meters. From a security perspective, a server is also considered an endpoint.

In short, an endpoint is a computing device that communicates back and forth with a network. All endpoints, when connected to a network, are open to a number of vulnerabilities if not properly protected.

• Endpoint management tools help keep track of devices used in a system to ensure their software is secure and up-to-date.

  Some of the endpoint management and security software tools in use on campus today include Cisco Advanced Malware Protection, Workspace ONE, Trendmicro, System Center Configuration Manager and IBM BigFix, which support virus protection and operating system and software updates and patches.

Important components of an endpoint management and security program include:

• Consistent management of university-owned devices including inventory, patching, and vulnerability management
• Identification of security threats and active mitigation of threats such as malware
• Protection for mobile devices such as tablets and smartphones

Because many people in the UW–Madison community bring their own devices to campus, the project will also include recommendations for personally-owned and unmanaged devices used throughout the university.

An endpoint security system is developed to protect the endpoints and their network from malicious threats. It provides a central method to secure the IT network and give visibility to vulnerabilities and risks over time.

Currently, endpoint management is inconsistent across campus. In addition, license and support contracts for our current security agents are due to end. This project seeks to create a service that provides the ability to centrally manage endpoints and provide security agents for over 80% of the campus computing environment.

The UW System Information Security Program requires UW–Madison to standardize on tools that will enable a campus-wide inventory of university-owned computing devices, provide the capability to connect to all devices, and enable central logging and activity reporting. In addition, the protection of UW–Madison computing devices or endpoints (e.g., desktops, laptops, servers, mobile devices, etc.) that access University data is critical to reducing the overall security risk to the data these devices encounter.

UW–Madison has selected industry-leading and forward-thinking technology solutions that address disparities in endpoint management and security across organizations, which will help us meet the UW System requirements and our own endpoint management and security needs.