1 |
Remote access VPN for employees |
VPN solution replacement with Global Protect Palo Alto Networks VPN |
2 |
Inventory of hardware, software, and licenses owned by ITS |
Fixed Assets Banner module will be configured to manage District's IT assets |
3 |
Email accounts' maintenance and retention practice directives |
Practice directives describing email accounts' maintenance and email messages retention practices |
4 |
Campus technology refresh |
Identify and refresh legacy end users' workstations, classroom A/V equipment, and labs equipment |
5 |
MFA rollout |
Multi-factor authentication for employees |
6 |
On-boarding/Off-boarding policies for employees |
ITS needs the policy and automation reports developed to ensure on-boarded employees |
7 |
Conversion from Data Connect to Ellucian Experience |
Migration to Ellucian Experience SaaS |
8 |
Identity as a Service Portal Guard IDaaS |
Move RAMID to the AWS cloud |
9 |
Decommission unused ARGOS reports |
There are approximately 4,000 ARGOS report, need to analyze usage and decommission unused reports |
10 |
Implement GOTO licenses for end users' support |
Implement software for ITS support analysts to provide remote end users' equipment support |
11 |
Papercut |
Student printing with Konica Minolta |
12 |
KM printing for employees |
Faculty and employees print services enablement from any printer, standardization on multi-function copiers and decommissioning of legacy printers, migration of existing printers to new Equitrac system |
13 |
Labs authentication standardization |
standardize on student logins and imaging software, printing software, and centralize domain controllers currently located in labs |
14 |
Microsoft 2012 servers removal from service |
2012 servers are end of life and need to be replaced as they are considered a cybersecurity vulnerability |
15 |
Time and Effort form creation for one of the SIG reports |
Need to be able to push the required form into Form Fusion |
16 |
Windows 2008 servers refresh |
Windows 7 Extended Security Updates (ESU) include security updates for critical and important issues as defined by Microsoft Security Response Center (MSRC) for a maximum of three years after January 14, 2020. Migration and decommissioning of all legacy servers by Fall, 2024 |
17 |
Banner document management AXRM migration to Output Transformation Server (OTS) |
AXRM needs to migrate to OTS |
18 |
Banner users permissions review and permissions classes organization |
Identify current permissions, validate, and clean up existing settings. Standardize access to forms, queries, and reports based on department/position |
19 |
Simplicity |
Software to be used by DSPS as Student Information System |
20 |
Specialized security systems for SFPD (cameras) |
ITS doesn't have direct management of the cameras. This is a POC. |
21 |
There is a time and effort module within BANNER that hasn't been turned on. |
Time and effort tracing for FreeCity needs to commence to address previous years' audit findings |
22 |
Smart Classrooms |
There are approx. 500 classrooms across campus, about 20% of them are smart classrooms. Classroom updates are planned for 20 Chinatown classrooms. |
23 |
Fog server upgrade |
The legacy server will be upgraded for ADA compliance |
24 |
STEAM Infrastructure |
Designing network infrastructure for STEAM building |
25 |
DRT Infrastructure |
Designing network infrastructure for DRT building |
26 |
Student Success Building Infrastructure |
Designing network infrastructure for the building |
27 |
ȷ fiber lease renewal with City of SF |
20-year lease is due for renewal in June 2024 |
28 |
Cybersecurity Penetration Test |
Sacramento CCC Chancellor's office sponsored ȷ cybersecurity penetration test |
29 |
DataCenter UPS |
Broken UPS needs to be replaced |
30 |
Automate student password reset via ChatBOT |
Implement automated student email password reset via Rocky the RAM ChatBOT |
31 |
Penetration test finding - Immediate p.16, p.60 |
Require SMB Signing on 636 devices |
32 |
Penetration test finding - Immediate p.17 |
Enforce RDP Network Level Auth Safeguards on 91 devices |
33 |
Penetration test finding - Immediate p.18 |
MS SMBv1 Protocol Remote Code Execution Vulnerability 9 systems to be patched |
34 |
Penetration test finding - One Year p.19 |
CodeMeter RunTime Heap Leak & Denial of Service 2 systems affected |
35 |
Penetration test finding - One Year p.19 |
Unsupported Software Mitigations (legacy software) |
36 |
Penetration test finding - One Year p.23, p.62 |
Missing Patches (Unsupported Applications) |
37 |
Penetration test finding - Three Years p.24 |
SMB Null Session Authentication 2 Windows shares on remote hosts |
38 |
Penetration test finding - Three Years p.25 |
Consider Disabling Multicast DNS (mDNS) |
39 |
Penetration test finding - Three Years p.26 |
Unsupported Software Mitigations |
40 |
Penetration test finding - Three Years p.29, p.63 |
Missing Patches |
41 |
Simple Syllabus Banner integration |
OLET requested Simple Syllabus integration with Banner |