IT Division Conducts Survey of Computer Systems
As part of an overall initiative to improve cyber security across the enterprise, the Department of Energy is currently rolling out a plan to deploy multifactor authentication (MFA) to protect data and systems. MFA usually combines a pin or a password with some kind of hardware token or card, which makes it more difficult to compromise an account.
What does this mean for you?
Jefferson Lab already has MFA rolled out to protect certain types of sensitive data/systems, such as those on the business services network. In order to comply with the current DOE initiatives and align with best-business practices, the Lab will be enhancing our MFA implementation using an approach that will minimize the impact on Lab mission while reducing the risk. As part of our process, we are doing analysis to better understand our environment. Earlier this year, we performed a survey of group directories.
This survey is intended to limit the scope that the MFA initiative will have within JLab's computing environment, while still allowing us to meet our requirements to protect sensitive information. At this time, we are taking an additional step to better understand the computers on our network and how they are used, including whether or not they access sensitive information. We need this information to determine whether or not a computer will need software installed/configured to support multifactor authentication. In order to better protect sensitive information, we will be rolling out two-factor requirements and network segmentation in the coming weeks. It is important that you specify if sensitive information is accessed from each computer in the survey, in order to minimize disruption. Please take a moment to review your computers, using the following link:
Please let me know if you have any questions: firstname.lastname@example.org.