Endpoint Management

 

Endpoint Management software is a category of software tools that assist in securing and protecting our devices, such as desktops, laptops, servers, and mobile devices, within the University's network. We appreciate you doing your due diligence to help keep Courant and NYU's network safe and secure. Without this endpoint software, all computers that connect to NYU's network without protection present a risk for cyber criminals and digital crimes.

The potential digital risks facing NYU-owned computers extend beyond the security of each individual machine to also encompass the safety of all NYU colleagues, the University Network, and its data. In order to guarantee the protection and security of our digital systems, it is essential for all faculty, staff, and students to both be knowledgeable of, and compliant with the best practices in cybersecurity.

It is mandatory for all NYU-owned machines to have these software tools installed.

 

For downloading and installation instructions, please visit this site.  

 

For NYU-owned Devices

A description of each of the software tools is as follows:

 

BigFix:

BigFix is a powerful endpoint management software utilized by our University ITS. BigFix proactively assists in keeping our systems secure by identifying vulnerabilities and applying patches and updates to various devices. It is crucial that all users allow BigFix to operate efficiently on their machines without interference or tampering. Please refrain from modifying or disabling BigFix configurations, as it plays a pivotal role in protecting our network resources and sensitive information.

CortexXDR:

CortexXDR is an advanced endpoint protection software that detects, prevents, and responds to potential cyber threats. CortexXDR continuously monitors system activities, identifies suspicious behavior, and takes appropriate action to mitigate risks. It is imperative that all NYU University members keep CortexXDR enabled on their devices, making sure to follow any recommended actions prompted by the software. By complying with the software, we collectively enhance our overall security posture in addition to preventing potential breaches or attacks.

InsightVM:

InsightVM is a vulnerability management software that creates real-time reports in order to detect and prioritize vulnerabilities within our systems. InsightVM provides a comprehensive view of potential weaknesses, aiding in the identification and remediation of vulnerabilities before they can be exploited by malicious actors. We encourage all users to promptly address any vulnerabilities identified by InsightVM and to follow recommended patches or remediation steps provided by the software.

For additional information regarding NYU's Cybersecurity initiative, please visit this site

 

For Personally-owned Devices

 

Malwarebytes:

In addition, there also exists Malwarebytes, which provides protection for all personally-owned machines. Though not mandatory, we highly recommend installing Malwarebytes, as it provides further protection when using NYU services.

 

Best Safeguarding Practices

Finally, to ensure a safer digital environment, we kindly request the following precautions from all NYU faculty, staff, and students:

  1. Avoid tampering or disabling any endpoint software: Let BigFix, CortexXDR, and InsightVM operate as intended in order to maintain optimal security levels.

  2. Report suspicious activities:

    1. Be vigilant and immediately report any odd or irregular activities or suspected security breaches to NYU IT for investigation: security@nyu.edu.

    2. Report suspected phishing emails using the PhishAlarm button in NYU Email (Google). If you can’t find PhishAlarm, forward the suspicious email to phishing@nyu.edu.

  3. Utilize strong and unique passwords: Strengthen your online accounts and devices by creating strong, unique passwords. Likewise, wherever possible, enable two-factor authentication.

  4. Be cautious with email attachments and unknown links: Exercise caution when opening email attachments or clicking on links, especially if they are from unknown sources or appear suspicious.

  5. Stay informed: Keep yourself updated about the latest cybersecurity threats, best practices, and any University-specific security guidelines shared by our IT departments.

 

Remember, cybersecurity is a collective responsibility. By supporting the University's cybersecurity initiative, we can effectively safeguard our digital landscape, protect personal information, and preserve the integrity of our systems.


For additional information and training, see NYU IT's Cybersecurity Checklists and Cybersecurity Awareness Training. Thank you for your commitment and cooperation.