Workstation Security Travel Standards

• U of A
• IT Services
• Accounts and Security
• Cybersecurity
• Workstation Security Travel Standards

The university’s IT Security Office recommends all travelers be cognizant of the conditions in the countries they will be traveling in and to. Travel conditions and advisory levels can be found on the US Department of State website.

Travel advisory levels:

Level 1: Exercise normal precautions

Level 2: Exercise increased caution

Level 3: Reconsider Travel

Level 4: Do not travel

When traveling to a level one or two country, university employees should travel with an up-to-date university workstation and media. See Workstations requirements below.

When traveling to a level three or four country, university employees should consider postponing travel until conditions improve. When travel cannot be postponed, employees should travel with sanitized workstations and media, meaning a fresh university OS installation and configuration without any university or personal files. Any media that will receive data should be encrypted, and there should not be any data processed or kept on devices that reside in these countries.

University Managed Workstation Requirements

Windows 

• University installed latest Windows Operating System
• Intune (system updates and security patching)
• Microsoft Defender for endpoint (Virus Protection, formerly known as Defender ATP)
• Bit locker (hard drive encryption)
• Global protect (university VPN)
• ThreatLocker (provides elevated privileges for installs and updates)

Linux

• Up to date and supported version of Linux
• Monthly patching mechanism (security patching)
• Microsoft Defender for endpoint (Virus Protection, formerly known as Defender ATP)
• Encrypted file system
• Global Protect (Ubuntu, Debian, CentOS, RebHat) (university VPN)

MAC 

• Latest version of MacOS
• Intune or Jamf (system updates and security patching)
• Microsoft Defender for endpoint (Virus Protection, formerly known as Defender ATP)
• Hard drive encryption (FileVault)
• Global Protect (university VPN)

General Technology Travel Advice:

• Turn off Wi-Fi and Bluetooth when not in use.
• Only connect to trusted networks and turn off “connect automatically.”
• Use the VPN when connecting to Wi-Fi or wired network.
• Take your own charging cables.
• Do not use public charging stations.
• Do not put your workstation in a checked bag or leave it unattended.
• Hotel safes are not safe.
• Keep digital copies of important travel documents on a separate, encrypted USB drive.
• Be aware of your surroundings.
• Make sure several people have your travel itinerary and know how to get in touch with you.
• US State Department Smart Travel Enrollment Program (STEP).