Virus and Security Information
Security Checklist for Windows Computers
Required steps for all Windows computers
- Set up your local workstation account as a User (and not Adminstrator). Use this account for your every day access.
- Assign strong passwords for all local workstation accounts (including Adminstrator and Guest). Use the Administrator account only when needed (to install software, printers, etc.).
- Run Windows Update Service to install:
- All operating system security patches and critical updates.
- All security patches and critical updates for Microsoft applications.
- Configure Windows Updates for automatic installation of future patches and security updates.
- Install or update Symantec anti-virus. Run a complete desktop virus scan.
- Install or update Anti-malware software. Run a complete desktop malware scan.
- Install updates to other critical applications (Flash, Adobe Reader, etc.) using the Secunia Vulnerability Scanning - Online.
Additional steps if your computer stores or accesses private data
University policy requires the following steps for devices that store or access private data. For the complete policy see: Standard - Securing private data).
- Determine the local data owner (person responsible for ensuring the appropriate security of the data over its lifetime).
- Designate the Information Technology Support personnel.
- Complete the following enhanced configuration settings for Microsoft Windows:
- Set up the password security features.
- Set up the account lockout features.
- Set up the account and other settings.
- Set up computer and device logs.
- Encrypt the data following the guidelines for Encrypting Stored Data
- Review the "Data Storage and Media" requirements.
- Ensure the physical security of the workstation.
- Configure secure backups of the software and data.
- Review the "Secure Data Deletion & Secure Disposal of Equipment" requirements.
- Complete periodic review of the workstation.
Rev: 9.12 sab