Skip Navigation
Division of IT Home
University of Missouri System
University of Missouri-Columbia
Division of IT: Security

Security Inspection Program

More info

Support

The Division of IT security inspection program reduces the risk of exploits to University of Missouri-Columbia systems by proactively identifying vulnerabilities found in information systems and by deploying both vendor and industry best practices in order to remove or mitigate the severity of those vulnerabilities.

The program strives to accomplish this mission in six distinct phases:

  1. Identification: During the identification phase, a thorough list of networks, systems and physical locations to be inspected is gathered.
  2. Coordination: During the coordination phase, the Division of IT security inspectors work with the client to determine the boundaries of the inspection. The goal is to minimize the impact to the client, and a key element to do so is determining what times specific locations, networks and systems should be off limits to the inspectors.
  3. Inspection: During the inspection phase, data is collected by the Division of IT security inspectors, either in-person or through automated means, about the physical locations, networks, and systems identified by the client.
  4. Evaluation: During the evaluation phase, the data is compiled by the Division of IT security inspectors. This creates a comprehensive picture of the client's security posture. This data is compared to industry and vendor best practices to accurately describe the vulnerabilities in the system.
  5. Recommendation: During the recommendation phase, the Division of IT security inspectors work with the client to analyze the vulnerabilities found in the evaluation phase. Inspectors offer prioritized recommendations on how best to remediate the vulnerabilities that have been found based on the client's business needs.
  6. Repetition: During the repetition phase, the client system is evaluated again, both to make certain that the recommendations have been adopted, and to insure that new vulnerabilities have not crept into the system. This phase is also used to determine if the overall security posture has been increased despite the ever-changing state of information security.

Program Service Levels

The Division of IT Security Inspection program currently offers four levels of service.

More Information

For more information on the Division of IT security inspection program or to schedule an audit, contact isam@missouri.edu.
University of Missouri
Division of Information Technology
615 Locust Street, Columbia, MO 65211
(573)882-2000
Copyright ©2007 Curators of the University of Missouri.
DMCA and other copyright information.
An equal opportunity/affirmative action institution.
Revised August 3, 2007