ISO Assisted Scans
The Information Security Office is also offering a follow-up "ISO Assisted Scan" service to
help sensitive data cleanup efforts. This service provides more comprehensive scans which
can find sensitive data that the basic "Employee Initiated Scan" might have missed. Follow-up
scans are scheduled and run by the ISO, but the review and cleanup of the scan results is
completed by the employee.
Deans and department heads may request this service to ensure that all sensitive data in
their areas is removed or protected.
Assisted Scan Process
A dean or department head defines groups within their area. Each group is assigned a unit
leader who guides the cleanup of sensitive data. The process includes three phases completed
in a 3-week timeframe.
Preparation Phase: This phase prepares employee workstations for the scanning process.
It includes running a test scan to be sure Identity Finder works on each one.
Steps of the the Preparation Phase are:
Unit leader identifies primary user profiles, public email folders, shared mailboxes
and shared drives that need to be scanned
SDPI team runs a test scan with Identity Finder to verify correct setup and to confirm
scans will complete successfully.
Scan Phase: Searches for High Risk sensitive data
Scan is run by the SDPI Team on Fridays at 6pm. Users review results files and clean workstations
the following week.
Final Cleanup Phase: This process not only validates the sensitive data cleanup but also
cleans the hard disk of hidden/deleted data and temporary files.
Users initiate the cleanup process
The SDPI Team verifies cleanup completion
Certificates of completion are awarded to unit members.