• Campuses
  • Abilene
  • Amarillo
  • Dallas
  • El Paso
  • Lubbock
  • Permian Basin
• Info For
  • Careers at HSC
  • Prospective Students
  • Current Students
  • Residents
  • Faculty & Staff
  • Alumni & Friends
  • Patients & Healthcare
  • Visitors & Community
  • Giving to TTUHSC
• Schools
  • Allied Health Sciences
  • Biomedical Sciences
  • Medicine
    • HSC School of Medicine
    • Foster School of Medicine
  • Nursing
  • Hunt School of Nursing
  • Pharmacy
• Contact Info
  • HSC Directory
  • HSC Contacts
  • IT Contacts
• Site Maps
  • HSC Site Map
  • IT Site Map

Quick Search

IT Resources

• Information Technology
• Quick Links
  • Available Services
  • IT Solution Center
  • TechLink
  • IT Policies
  • SolveIT
  • Work Orders (STARS)
  • LCMS

IT Policies

• Policies
• TTUS Board Of Regents Policies And Procedures
• Security
  • I.T. Resource Management And Responsibilities
  • Managing Physical Security
  • Disaster Recovery
  • Security Safeguards
    • Acceptable Use
    • Account Management And User Responsibilities
    • Administrator/Special Access
    • Backup/Recovery
    • Change Management
    • Email
    • Incident Management
    • Internet And Intranet Connectivity
    • Intrusion Detection
    • Network Access
    • Network Configuration
    • Password/Authentication
    • Asset Management
    • Portable Computing
    • Privacy
    • Monitoring Of I.T. Assets
    • Security Awareness And Training
    • Server Hardening
    • Authorized Software
    • Application System Development, Acquisition, And Lifecycle
    • Vendor Access
    • Viruses And Other Malicious Code
    • Wireless Access
    • Vulnerability Assessment
• Institutional Videoconferencing Systems
• Institutional Computer Naming Convention Standards
• Hardware And Software Standards
• Technology Replacement Schedule
• I.T. Procurement Review
• Intellectual Property Rights
• Copyright
  • Copyright And Computer Software
  • Infringement Of Copyrights On Computing Software
• Web Standards
  • Student Web Publishing Standards
  • TTUHSC Web Publishing Standards
  • Web Site Visual Elements Standards
  • Change Management Procedures For Official TTUHSC Web Pages/Sites
  • Information Services Coding Standards, Security, And Audit Controls
  • E-Commerce Applications
  • Web Use And Copyright Standards
  • State Of Texas Web Publishing Standards
• Disciplinary Process
• Definitions
• Guidelines For Operating Systems Security
• Federal and State Statutes
• Notice of Disclaimer of Liability

HSC Resources

• HSC Home
• Welcome to the HSC
  • Welcome to the HSC
  • TTUHSC Strategic Plan
  • The Daily Dose
  • Fact Books
• Office of the President
• Campuses
  • Abilene
  • Amarillo
  • Dallas
  • El Paso
  • Lubbock
  • Permian Basin
• Schools
  • Allied Health Sciences
  • Biomedical Sciences
  • Medicine
    • HSC School of Medicine
    • Foster School of Medicine
  • Nursing
    • HSC School of Nursing
    • Hunt School of Nursing
  • Pharmacy
• Centers & Institutes
• Research
• Administration
  • President's Office
  • Administrative Officers
  • Communications
  • Departments
  • Office of Global Health
  • Rural & Community Health
  • Finance & Administration
  • Information Technology
  • Policies, Manuals and State Reporting
  • Institutional Compliance
• Human Resources
  • Prospective Employees
  • New Employees
  • Current Employees
  • HR Offices
  • Job Opportunities
  • More »
• Libraries
• Accreditation
  • Office of Institutional Planning and Assessment
  • Quality Enhancement Plan
  • More »
• The Daily Dose
• Emergency Preparedness
• Compliance Hotline

TTUHSC IT Policies

1.4.18   SERVER HARDENING

Standard/Procedure   

A server cannot be connected to the TTUHSC network until it is in a TTUHSC I.T. approved secure state.  Prior to connecting the server to the network, the following must be performed:

• Complete a Server Registration Form (http://www.ttuhsc.edu/it/forms/serverregistration.aspx)
• Install the operating system from an I.T. approved source which includes proper licenses,
• Receive a reserved IP address from the appropriate regional campus network administrator,
• Remove all unnecessary software, system services, and drivers,
• Set appropriate security parameters, file protections, and enable audit logging,
• Disable or change the password of default accounts, and
• Complete a Server Registration Form (http://www.ttuhsc.edu/it/forms/serverregistration.aspx) and submit it to its@ttuhsc.edu.

Before connecting to the network

• Install I.T. approved anti-virus software, and

Immediately after connection to the network, the following must be completed:

• Apply the latest vendor supplied patches, which have been tested for compatibility with the production environment.

Note: For more detailed information and procedures based on specific operating system, please refer to Guidelines For Operating Systems Security at http://www.ttuhsc.edu/it/policy/ossecurity.aspx.

All servers are required to be submitted to a vulnerability assessment performed by TTUHSC Information Technology Security group (ITS) prior to use.

In the event that a vulnerability or a combination of vulnerabilities are discovered that constitute an unacceptable level of risk as deemed by TTUHSC ITS, the server administrator is responsible for ensuring they are addressed. Any such risk must be addressed prior to production use. Further scanning may be required.

TTUHSC ITS will monitor security issues, both internal and external to TTUHSC, and will monitor the release of security patches on behalf of TTUHSC.  After the server administrator is notified by the ITS, patches must be implemented within a specified timeframe determined by the security level of the patch, or the risk level of the vulnerability.  ITS will routinely monitor to ensure the system(s) are in compliance.  Failure to comply with these guidelines can result in the server(s) being removed from the network. 

TTUHSC I.T. will perform due diligence in testing security patches before release when practical.

Texas Tech University Health Sciences Center, 3601 4th Street, Lubbock, TX 79430
T: 806.743.1000
it.webmaster@ttuhsc.edu

Online Institutional Resumes

Campus Webmasters | Recommended Web Site Viewing Requirements | General Policy Information

State of Texas Web Site | Texas Homeland Security | Texas Veterans Portal | SAO Fraud Reporting
DMCA Compliance | Compliance Hotline TTUHSC Energy Conservation Report

TTUHSC Home | Texas Tech University System | Texas Tech University | Angelo State University

©2013 Texas Tech University Health Sciences Center | All Rights Reserved