Dear Colleagues:
We’re pleased to share that UCLA has made substantial progress to meet the UC Office of the President’s cybersecurity mandate, and is now set to embark on introducing measures to ensure the campus can stay compliant with systemwide requirements.
As announced in the May 5 BruinPost, this UC systemwide initiative strengthens our ability to protect sensitive university data and digital infrastructure critical to UCLA’s mission in education, research and service.
Thank you to all faculty and staff who have already taken the necessary steps to prepare for these changes. Your action is essential to helping protect our university’s data, research and digital infrastructure from escalating cyber threats.
If you have not yet implemented the UC cybersecurity measures, you will need to do so now in order to continue accessing critical UCLA data, systems and applications.
Please note: Enforcement of these requirements began yesterday, Monday, June 2 at 12:00 p.m. PT.
What You Need to Do
To avoid disruptions to system or application access, complete the following:
- Complete your annual UC Cybersecurity Awareness Training (if not current), now required to access most UCLA applications protected by Single Sign-on (SSO)
- Access the training via the UC Learning Center
Install Trellix Antivirus and Duo Desktop on any devices used to access UCLA data or systems, as both are required to access critical UCLA applications
To determine if your device already has Duo Desktop and/or to confirm successful installation, use the Duo Desktop Test site
For installation, follow the step-by-step Duo Desktop Getting Started Guide or contact your local IT support team for help
If your device is managed by IT, this update was likely handled for you automatically
If you don’t have the local administrator rights required to install the Duo Desktop software, please contact your IT support desk directly
Verify you are enrolled in Multi-Factor Authentication (MFA) using the Duo Mobile application for access to your campus email
Ongoing compliance with the requirements outlined above will ensure you avoid service disruptions and maintain access to essential UCLA systems and applications.
If you have additional questions about the UCOP cybersecurity requirements or how these new policies will impact your ability to access critical UCLA applications, please contact the IT Support Center at (310) 267-HELP (4357) or email Help@it.ucla.edu.
Support and Resources
- OCISO Support Site – Overview of the UCOP cybersecurity mandate, policy details and more resources
- The UC Office of the President will be hosting a systemwide informational session on Endpoint Detection and Response (EDR), scheduled from 12 to 1 p.m. on Tuesday, June 10. This session will address questions and concerns related to EDR implementation, particularly as it relates to academic work and privacy. Please register to attend and/or receive the recording: Webinar Registration – Zoom
- Cybersecurity Awareness Training Resource Page – General information about the training course, instructions on how to access it and answers to commonly asked questions about the requirement
- Duo Desktop Resource Page – Support for Duo Desktop including a list of high-risk applications, an overview of the application and a step-by-step video on the new Duo Desktop login and installation process
- Duo Desktop FAQ – Answers to commonly asked questions about Duo Desktop
- Trellix Endpoint Detection and Response (EDR) FAQ – Answers to commonly asked questions about Trellix including privacy related topics
Thank you again for your efforts in helping UCLA meet the UC systemwide cybersecurity mandate. UCLA is only cyber strong when we are all cyber strong. Your continued partnership supports a safer digital environment for our campus.
Sincerely,
Michael J. Beck
Administrative Vice Chancellor
Lucy Avetisyan
Associate Vice Chancellor and Chief Information Officer
Drake Chang
Chief Information Security Officer
