Endpoint Management & Security

Overview

SDSU employs centralized management for all university-owned devices utilizing advanced endpoint management technologies. This centralized approach substantially mitigates risks associated with outdated software, viruses, and other cyber threats, enhancing overall security and efficiency for the university community.

Some examples of activities in Endpoint Management include:

  • Administering Configuration Settings: Setting up and maintaining the desired state for software and hardware.
  • Enforcing Endpoint Security Standards: Implementing and monitoring security protocols to protect against cyber threats.
  • Inventorying Hardware and Software: Keeping track of all devices and software within the university network.
  • Deploying Patches to Software and Operating Systems: Regularly updating software and operating systems to the latest versions.

What tools are used for Endpoint Management?

Windows Platform

  • Management Tool: MS Intune. MS Intune is used to manage Windows devices. It allows for controlling configuration settings, enforcing security standards, and managing software/hardware inventory efficiently.
  • Third-Party Patching: PatchMyPC. PatchMyPC complements the patch management strategy by updating third-party software on Windows, ensuring all applications are secure and current.

macOS Platform

  • Management Tool: Jamf. Jamf is utilized to manage macOS devices. It meets the specific needs of Apple devices, from configuring settings to inventory management.
  • Third-Party Patching: ManageEngine. For macOS, ManageEngine pats third-party applications, maintains software health, and reduces security vulnerabilities.

Endpoint Security for Both Windows and macOS 

  • Security Solution: M365 Defender. Across both platforms, Microsoft 365 Defender is the frontline defense against cyber threats. It provides robust security, safeguarding all endpoints irrespective of their operating system.

What endpoint device types are protected?

For purposes of this documentation endpoint devices are workstations, desktops, laptops, tablets, and cell phones.

Cost

All Endpoint security and Management software licensing costs are funded by SDSU IT Security Office and SDSU Research Foundation.

Get Started

Get Help

  • Training required before accessing the endpoint management platforms ServiceNow Knowledge Base  (link coming soon)
 

Get Help

To request a service, create a ServiceNow Ticket and assign the ticket to “IT-ITSO-Help Desk”. Connect with us at [email protected] for security-related-questions, consulting, and incident reporting.

IT Security Office
Administration Building
[email protected]

Report an Incident

Please contact the Information Security team immediately if you experience or are aware of any of the following: