Requirements when accessing administrative systems
Institutionally owned/managed devices
- Connect through Virtual private network (VPN) if working remotely
- Do not share devices with others
- Keep security controls active (e.g., device password, authenticated screensaver, automatic updates, antivirus protection)
- Only install licensed software
- Keep OS and applications up to date with supported versions (see Supported browsers and Supported operating systems)
Unmanaged personal devices
- Do not store regulated data beyond the duration of the connected session, See McGill's Cloud Services page
- Connect through Virtual private network (VPN) with McGill Two-factor authentication (2FA)
- Enable password, authenticated screensaver and Antivirus software
- Keep devices up to date (OS and applications). See How Updates Secure Your Device
- Do not save credentials that provide access to administrative systems
Resources
- Secure Your Journey (cybersecurity tips, articles and training resources)
- Virtual private network (VPN)
- Two-factor authentication (2FA)
- Antivirus software
- Keep McGill data safe in the cloud
- Stay safe on your mobile device
- View all IT policies
- Cybersecurity information from the Government of Canada:
- How updates secure your device
- Protecting Information While Using Remote Technologies
- Government of Canada advisory: Cyber Hygiene for COVID-19
- Canadian Centre for Cyber Security: Guidance for Researchers during COVID-19