Policy & Procedures
ITS maintains and enforces key security policies and procedures within the WSU Business Policies and Procedures Manual (BPPM), including the System Security Plan, Security Assessment Procedure, and Risk Assessment Procedure. These resources help business units align their technical implementations with WSU’s security and privacy standards.
Additionally, annual cybersecurity awareness training is now required for all WSU employees, strengthening the university’s defenses against social engineering and phishing attacks. Students and staff actively contribute to information security by reporting suspicious emails to the ITS security team for review.
Multi-Factor Authentication (MFA)
MFA is a required security measure for accessing most academic and business systems at WSU. This industry-standard tool significantly reduces the risk of compromised credentials, protecting over 30,000 daily network authentications across the university.
MFA policies have been redesigned to align with federal cybersecurity standards: NIST assurance levels. These improvements strengthen student, faculty, and staff account protection and ensure compliance with evolving security requirements across WSU systems.
Security Operations Center (SOC)
WSU’s SOC provides real-time monitoring, detection, and mitigation of cybersecurity threats. The SOC includes endpoint detection and response capabilities, protecting more than 8,000 servers, faculty, and staff devices with continuous threat visibility and rapid incident response.
Access Security
ITS conducts an annual security role review for the student information system (SIS), ensuring appropriate access for over 10,000 employees. This process strengthens data protection and enforces role-based access controls across the university.
Email Protections
WSU email systems are protected by Domain-based Message Authentication, Reporting and Conformance (DMARC), which helps prevent phishing, spoofing, and malware attacks. This authentication protocol safeguards WSU’s digital identity and ensures secure communication for all incoming and outgoing emails.
Web Intelligence Data Preservation
WSU maintains student financial data in a secure, supported system designed for long-term accessibility and compliance. This system ensures data integrity and availability, supporting both the student experience and institutional needs.
Secure Teams Service
WSU offers a dedicated Secure Teams environment within Microsoft Teams for the storage and collaboration of sensitive data, including HIPAA-regulated information. This service ensures compliance with data protection standards while enabling efficient, secure communication and file sharing.
College Application System Enhancements
WSU’s student application system will soon also include updated document imaging and management. These enhancements support accurate and accessible student recordkeeping, contributing to streamlined admissions processes and robust documentation for institutional reporting.
Zoom Contact Center (Formerly Cisco Call Centers)
WSU has transitioned from Cisco-based call centers to the Zoom Contact Center, enhancing customer support with integrated identity verification features. This modern platform streamlines communication and improves service delivery across academic and administrative units.
myWSU Integration with Zoom Contact Center
The Zoom Contact Center is now integrated with myWSU, enabling seamless identity management between the student information system and customer support tools. This integration ensures secure, efficient handling of student inquiries and support requests.
Identity & Access Management (IAM) Roadmap – Phase 2
WSU continues to strengthen identity services with automated student onboarding and account creation. These enhancements ensure timely, secure access to university systems from the moment a student joins the WSU community.
WSU has also fully migrated from Shibboleth to Okta, a modern, user-friendly identity and access management platform. Okta enhances login security, simplifies access to university systems, and supports advanced authentication methods.
ClearPass Wireless Credentialing
WSU implemented ClearPass for wireless network access, enabling identity-based credentialing for students, faculty, and staff. This enhances network security and simplifies access management across campus environments.
Campus Security Camera Expansion
WSU expanded its security camera infrastructure to enhance student safety and situational awareness across campus environments.
Governance, Policy & Risk Management
IT System Governance Implementation
WSU implemented a system-wide IT governance framework to ensure consistent technology standards, improve transparency, and deliver a unified student technology experience across all campuses.
Policy & Standards
Key IT policies were revised and modernized, including the replacement of BPPM 87.11 with 87.10 and updates to 87.23 and 87.55. These changes support federal grant compliance and strengthen institutional infrastructure and security.
A comprehensive security policy library and system-wide control standards were developed and published, enabling functional areas to assess and report IT risk effectively
Compliance Support
WSU implemented controls aligned with the Cybersecurity Maturity Model Certification, ensuring eligibility for federal research funding and improving institutional cybersecurity posture.
Legacy Email Protocol Retirement
WSU completed the removal of outdated email protocols (IMAP4, POP3, SMTP), ensuring all email clients meet modern security standards and reducing the risk of credential compromise.
Vulnerability Management System Deployment
A centralized vulnerability management system was deployed to proactively identify, assess, and remediate security risks across WSU’s digital infrastructure.
Energy Exchange Migration to Microsoft 365
WSU successfully migrated the Energy Program’s on-prem Exchange and @energy.wsu.edu domain to Microsoft 365, improving reliability, security, and collaboration.
System-Wide Firewall Replacement
Firewalls across all WSU campuses were replaced, enhancing network security and supporting secure access for remote and on-site learning and research.
Email Isolation Expansion
Email isolation services were expanded to include VIPs and high-risk roles, reducing exposure to phishing and malware threats.
Cloud Security Monitoring Operationalization
WSU established formal processes and responsibilities for cloud security event monitoring and detection, improving visibility and response capabilities across cloud environments.
Phishing Simulation Program Expansion
The phishing simulation program was expanded to include all faculty and staff and integrated with the broader Security Awareness Training Program to improve user resilience to social engineering attacks.
Security Awareness & Training Enhancements
WSU expanded its security training offerings to include role- and risk-based content, ensuring that users receive relevant, actionable guidance based on their responsibilities. Live workshops are also available.
System-Wide IT Vulnerability and Risk Management Programs
WSU implemented a unified IT Risk Management Program that integrates functional area risks with institutional oversight, enabling continuous monitoring and informed decision-making. Concurrently, a coordinated vulnerability management program was launched to proactively identify and mitigate security risks across the WSU system.
Continuous Monitoring of Security Controls
WSU integrated vulnerability and risk management tools to enable continuous monitoring of security control objectives, providing real-time insights to stakeholders.