Effective Date

2021 IT asset repository

As required by USG policy, and in response to a USG audit, all Georgia Tech IT devices must be maintained in an Institute wide inventory.

Each CoC employee must affirm every computer and network capable device associated with you or your lab is listed on https://assets.cc.gatech.edu. Use the “submit an IT asset” or “Update/Inquire/Remove this asset” buttons as needed to request adjustments to the list.

We fully understand and empathize that compliance with this USG and Institute mandatory policy may be inconvenient or present a challenge. Please reach out to helpdesk@cc.gatech.edu  if you have questions or comments.

As a reminder, IT unit support groups such as TSO do not provide IT support for non-GT equipment. Requests for assistance on assets not in inventory will be directed to alternative sources.

 

Frequently Asked Questions:
 

Can my lab manager, research scientist, or grad student, do this for the lab?

Identifying and submitting assets to be added or removed may be delegated to any lab member the PI sees fit. Each PI must directly affirm their lab’s inventory is complete. The https://assets.cc.gatech.edu interface is available to all CoC employees.

What devices need to be reported?

All GT owned computers (desktops, laptops, servers) as well as all mobile devices (phones, tablets, iPads) must be included in the inventory.

In short, an item must be listed if it has a wired or wireless network interface, regardless of if that interface is active.

The assets.cc interface reports an asset as non-compliant, what should I do?

The initial priority is ensuring all assets are in inventory. If you are ready to work with us to bring an asset into compliance, please reach out by pressing the “Help make this compliant” button on https://assets.cc.gatech.edu or emailing helpdesk@cc.gatech.edu with the asset tag or hostname.

Why is this necessary?

The USG requires asset inventory and endpoint compliance be maintained on all Institute owned IT hardware. Correcting GT’s deficiency found by a recent USG audit has been made a top priority of the President and Executive Leadership Team. A future phase of the endpoint compliance effort will block all non-inventoried and non-compliant devices from the Georgia Tech network.

What’s next?

Reporting all inventory is one step in the endpoint and audit compliance response. Additional information on the Institute wide efforts are available. Details will be forthcoming in additional communications as the Institute finalizes the requirements.

With regard to endpoint compliance specifically, by December 31st, all Institute owned devices must have the following or policy exceptions* in place:

  • A EULA/Banner on local and remote login windows.
  • Idle screen lock enforced at 15 minutes.
  • Host based firewalls enabled.
  • Centralized log management running.
  • A current vendor supported operating system and security updates applied at least every 30 days (patch management).
  • The mandatory endpoint management tools (Cortex-XDR, Qualys, SCCM/JAMF/Salt) installed. These are the same tools required and installed for off campus devices in June of 2020 after the Fireeye->Cortex-XDR substitution.

*: it may be necessary to click the policy exception link twice to access the form