[Faculty] Reminder: Phased Secure Access Checks for Security Mandate Begin September 30

UCR Information Technology Solutions its at ucr.edu
Mon Sep 29 11:23:16 PDT 2025 

[image: image]

Colleagues,

Please be reminded that, in line with our UC Cybersecurity Mandate compliance
support plan
<https://its.ucr.edu/blog/2025/09/12/uc-cybersecurity-mandate-2025-compliance-support-plan-updates>,
UC Riverside will begin its phased implementation of secure access checks
on September 30, 2025. This phased approach
<https://its.ucr.edu/blog/2025/09/12/uc-cybersecurity-mandate-2025-compliance-support-plan-updates>
allows ITS to provide focused support for each group to help ensure minimal
disruption to your work.
Secure Access Checks: Reminder of What to Expect

Once the secure access checks are implemented, individuals who have not
taken the required steps to be compliant with training and/or secured
device requirements will not be able to access secure UCR resources
<https://its.ucr.edu/blog/2025/09/12/uc-cybersecurity-mandate-2025-compliance-support-plan-updates>
and applications. Instead, the individual will be prompted to take the
action(s) needed to come into compliance. Once the secure access check is
able to verify that the device and user training meets the UC standards,
the individual will be able to access secure campus resources.

ITS will be the first group subject to the security compliance checks. This
pilot phase will help us verify that the user experience is as expected
before other campus groups are phased in
<https://its.ucr.edu/blog/2025/09/12/uc-cybersecurity-mandate-2025-compliance-support-plan-updates>
.
Please Revisit the Checklist

All UCR employees and affiliates, with the exception of academic student
employees, are subject to the UC Cybersecurity Mandate 2025 security
requirements. Below is a three-point checklist you can review to make sure
you are compliant with the security requirements:


   1.

   Complete the UC Cyber Security Awareness Fundamentals training
   <https://uc.sumtotal.host/core/pillarRedirect?relyingParty=LM&url=app/management/LMS_ActDetails.aspx%3FActivityId%3D349429%26UserMode%3D0>:
   Visit the UC Learning Center at ucrlearning.ucr.edu to take this
   required annual training
   2.

   Use Multi-Factor Authentication (MFA): While you are already required to
   use MFA in order to access secure resources, you are encouraged to set up
   more than one authentication method. Learn more at its.ucr.edu/mfa
   3.

   Use the UCR Security Toolset: Visit its.ucr.edu/uc-security-toolset to
   download and install the UCR Security Toolset (note that university-managed
   devices already contain the toolset).
   -

      Duo Desktop is the security check mechanism and was added to the August
      2025 release
      <https://docs.google.com/document/d/1R9d0zK7M-4o-YsihgjZSXB-KuqooxjSJuTmzruI0AB4/edit?usp=sharing>
of
      the UCR security toolset. As a result, Duo Desktop should have been
      automatically added to all devices that contain the toolset. If for any
      reason your device did not receive Duo Desktop, please follow the
      guidance contained in this knowledge article
      <https://ucrsupport.service-now.com/ucr_portal?id=kb_article_view&sys_kb_id=62a1d127477ae210c85323c4116d434a&table=kb_knowledge&searchTerm=duo%20desktop#option2_19042719>
      .


For detailed information regarding secure access checks, including what
they are, the schedule for the phased implementation, and what secure UCR
resources are exempt, please refer to the ITS blog
<https://its.ucr.edu/blog/2025/09/12/uc-cybersecurity-mandate-2025-compliance-support-plan-updates>
.


Sincerely,

Matthew Gunkel

Chief Information Officer and Associate Vice Chancellor

Dewight F. Kramer

Chief Information Security Officer

Information Technology Solutions
Guidance

Resources

Read the UCR Security Toolset Purpose and Use whitepaper
<https://docs.google.com/document/d/1R9d0zK7M-4o-YsihgjZSXB-KuqooxjSJuTmzruI0AB4/edit?usp=sharing>
.

Find answers to FAQs about MFA <https://its.ucr.edu/mfa#faq> and the security
toolset <https://its.ucr.edu/uc-security-toolset#security-toolset-faq>.
UC-wide Mandate

All UC campuses are called to comply to help protect sensitive data,
maintain operational continuity, comply with regulations, and mitigate
financial risks associated with cyber attacks.
Read the Letter <https://its.ucr.edu/uc-presidents-letter>

Support

   -

   Review the toolset information and guidance
   <https://its.ucr.edu/uc-security-toolset>
   -

   Report an issue with installation
   <https://ucrsupport.service-now.com/ucr_portal?id=sc_cat_item&sys_id=d10c39ee0f348300138942bce1050e8b>
   -

   Get help in person by visiting an IT Support station in the libraries or
   SSC
   -

   Attend the next virtual office hour with ITS
   <https://events.ucr.edu/event/uc-cybersecurity-mandate-office-hours-with-its>

Download the UCR Security Toolset <http://endpointinventory.ucr.edu/home>

Installation guides are available for Windows
<https://ucrsupport.service-now.com/ucr_portal?id=kb_article_view&sysparm_article=KB0012265>
and MacOS
<https://ucrsupport.service-now.com/ucr_portal?id=kb_article_view&sysparm_article=KB0012269>
users.
Learn More

The security toolset is required for any device that is used to connect to
secure UCR networks and cloud resources, including personal devices. These
devices include computers, laptops, and Microsoft Surface tablets (learn
what’s not included
<https://its.ucr.edu/uc-security-toolset#are-mobile-devices-included-in>).
[image: image]
Reason for Change: UC Cybersecurity Mandate 2025

These changes are part of UCR's plan to better protect our community and
comply with a new UC systemwide mandate.
Learn About the Mandate <https://its.ucr.edu/cybersecurity-mandate-2025>

[image: image]
Video: Message from the Provost

Watch this video message from Provost Watkins to learn why UCR is
strengthening MFA, along with other key steps we must take to keep our
Highlander community safe.
Watch on YouTube <https://www.youtube.com/watch?v=8-bMZddr-Bc>



Need IT help? Submit a support ticket at its.ucr.edu/help


Information Technology Solutions

Computing & Communications Building

900 University Ave.

Riverside, CA 92521

951-827-4848 | its.ucr.edu
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://scotmail.ucr.edu/pipermail/faculty/attachments/20250929/165cc5dd/attachment-0001.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image
Type: image/png
Size: 42199 bytes
Desc: not available
URL: <https://scotmail.ucr.edu/pipermail/faculty/attachments/20250929/165cc5dd/attachment-0002.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image
Type: image/png
Size: 604736 bytes
Desc: not available
URL: <https://scotmail.ucr.edu/pipermail/faculty/attachments/20250929/165cc5dd/attachment-0003.png>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image
Type: image/jpeg
Size: 361433 bytes
Desc: not available
URL: <https://scotmail.ucr.edu/pipermail/faculty/attachments/20250929/165cc5dd/attachment-0001.jpe>

More information about the Faculty mailing list