The IT Security office offers customized vulnerability scanning for departments.  Vulnerability scans are designed to identify potential vulnerabilities and security problems with operating systems, application software, and network configurations.

The Security Office performs application security reviews for commercial and homegrown applications in use at Virginia Tech. An application security review is a process designed to identify strengths and weaknesses of applications that are involved in business processes at the university.

Risk assessments are an important part of protecting IT assets and information.  The IT Security Office provides information and forms for conducting a STAR risk analysis.

The Virginia Tech IT Security Office conducts IT security reviews throughout the university.  Security reviews are a service offered by our office to help departments discover potential cyber problems that could result in improper data disclosures, illegal usage, and potential problems that weaken IT systems.

The Security Operations Center (SOC) is a centralized portal that allows liaisons to access services provided by the IT Security Office for system administrators on campus.

The Virginia Tech IT Security Office provides training throughout the campus.  Training topics cover subjects from cyber security awareness issues to the latest techniques being used to compromise IT systems.

Finding and protecting sensitive data can be challenging.  FIND_SSNs is a tool developed to help discover sensitive data on systems. Find_SSNs searches for U.S. social security and credit card numbers.  It may help individuals and organizations find sensitive numbers in files on computers.  

Whenever Virginia Tech is notified of a (potential) data exposure, specific steps should take place to work with university officials to determine a course of action to ensure compliance with federal and state regulations.  more info