IT Services - Staff

IT Services > Staff > Windows 7 > Best Practice

• IT Home
• Staff Exchange E-mail
• Windows 7 Service
  • Preparation for Upgrade
  • Windows 7 Services - What's New
  • Optional Applications
  • Frequently Asked Questions
  • Data Encryption
  • Best Practice Guide
  • Antivirus
  • Password Changer
  • Staff Filestore
  • Staff Printing
  • Office 2010
• Staff Desktop XP
• External Partner Staff
• Corporate Applications
• Wireless
• Off Campus Access
• Mobile Computing
• More things we do
• New Staff
• Visiting Staff
• IT Support Staff
• IT Staff E-mail List Archive
• IT Technical Forum
• IT User Forum
• Security and Compliance
• Hostbuilder
• Computer Labs
• Firewall Registration
• Visiting Other HEIs - eduroam
• Active Directory FAQ
• New Staff
• Administration and Policies
• Service Catalogue

Windows 7 Service

Best Practice Guide

All computers

1. When your computer is not in use for a long period of time, such as weekends and overnight, power down. We understand that sometimes long computer simulations are run, so not all users will be able to switch off every weekend.

2. When your computer is not in use for a short period of time, "lock" the computer. Standby/Sleep mode is preferred, if available, as it saves power.

   • To enter "Stand by" mode, select Start then click the arrow button next to Shut Down, select Sleep. Windows XP - select Start then Shut Down, and then select Stand by from the drop-down list and click OK. When you return, press the power button, then Ctrl+Alt+Del, then enter your password and the computer screen will return as you left it.

   • To "lock" the computer, press the Windows key and L at the same time. When you return, press Ctrl+Alt+Del, then enter your password and the computer screen will return as you left it.

   This will stop anyone seeing anything they shouldn't or using your computer to do something they shouldn't. A screen saver with a password is not a secure alternative. Remember, according to the Acceptable Use Policy:

   The user is personally responsible and accountable for all activities carried out under their username.

3. When editing documents, spreadsheets etc. save your changes regularly (automatic recovery settings save your work every 10 minutes by default).

4. Documents and Favourites are saved on networked storage so are centrally backed up.

5. Your passwords must be kept secure:

   1. Do not write passwords on a piece of paper.

   2. Do not divulge your password to anyone other than trusted IT support staff.

   3. You must adhere to current password policy and advice. Advice on what constitutes a good password may be obtained from the IT Services Web pages.

   Remember, according to the Acceptable Use Policy:

   The user is personally responsible and accountable for all activities carried out under their username. The password associated with a particular personal username must not be divulged to any other person, other than to designated membersof IT staff for the purposes of system support...

   In particular, passwords used must adhere to current password policy and practice. Advice on what constitutes a good password may be obtained from IT Services Web pages. This advice must be followed: failure to do so may be regarded as a breach of this policy.

Laptops / Portable computers and working off campus

There are particular areas where you can lose security which apply particularly to laptops and working off-campus:

Security of Equipment off-campus

1. Equipment and media taken off the premises should not be left unattended in public places. Portable computers should be carried as hand luggage and disguised when traveling.

2. Mobile computing facilities should also be physically protected against theft especially when left, for example, in cars and other forms of transport, hotel rooms, conference centres and meeting places. Equipment carrying important, sensitive and / or critical business information should not be left unattended and, where possible, special locks should be used to secure the equipment.

3. Manufacturers' instructions for protecting equipment should be observed at all times, e.g. protection against exposure to strong electromagnetic fields.

4. Adequate insurance cover should be in place to protect equipment off site.

Security from Viruses etc. and ensuring Patches are applied

1. Laptops and Portable computers must be brought in to the University and connected to the University network, or be connected to the Internet regularly. Connecting to either the University network or the Internet will ensure that your antivirus updates are kept up-to-date.

2. Laptops and Portable computers must be brought in to the University and connected to the University network reasonably regularly. They must also be re-booted while connected to the University regularly, as patches are only applied on startup. Rebooting or starting up while connected to the University network will ensure that your patches are kept up-to-date.

3. If for any reason you are unable to connect to the University network for longer than four weeks, please contact your local IT support person or IT.Services@lboro.ac.uk or telephone 01509 222333 on your return (so that the antivirus updates and patches can be manually installed) before you connect to the network.

Security of data off-campus

You should look at the data you are using and determine its security requirements, e.g. is it confidential? Suitable controls should be applied as appropriate, e.g. lockable filing cabinets, and a clear desk policy. You also have obligations under the Data Protection Act, in particular:

Data subjects (that is persons about whom [information relating to an identifiable living individual] is held) may also sue for compensation for damage and any associated distress suffered as a result of ... unauthorised disclosure of, or access obtained to, data...

Service Catalogue | IT Accessibility | Acceptable Use Policy | About Us
January 2012