About IS

Information Security

Security Operations

Security Operations executes operational components of IS’s information assurance program. We work hands-on to ensure the protection of Penn State’s information and systems. Security Operations has two teams: the Enterprise Security Team and the Security Services Team.

Services

Enterprise Security

Enterprise Security keeps Penn State’s enterprise system safe through threat detection, incident response, and vulnerability management.

  • Threat detection: network and endpoint-based threat monitoring and analysis, system event correlation, and log analysis
  • Incident response: investigate, contain, and mitigate issues; work with units to respond and help recover from detected issues
  • Vulnerability management: system and application vulnerability detection, technical support, and tracking of mitigation efforts

Security Services

The Security Services team works strategically to provide applications and services that can be leveraged by the University community to secure information systems and data. A few of these services include Spirion and Defender for Endpoint (aka Defender ATP).

Security Services also provides risk assessments for existing systems and technology procurements; support for disaster recovery planning; and providing training opportunities. This group also responds to low-level security incidents and general inquiries.