Skip to main content

Secure Computing Project

Project overview

In 2022, the CU Boulder campus adopted baseline security standards for university-owned computers and servers which are being implemented through the Secure Computing project. In order to better ensure the integrity of the shared information technology environment on our campus, these standards address the following challenges:

  • Increase the security of university computing assets including data.
  • Reduce risk to university intellectual property. ​
  • Drive enterprise effectiveness and reduce risk of software audits.
  • Provide support to a broad set of employees.
  • Maintain employee flexibility in their technology to conduct their teaching, research, and creative work.

Dell and Apple computers ordered through the CU Marketplace are loaded with the software needed to meet the Secure Computing Standard. Learn more about the purchase and set-up process for newly purchased computers on the Secure Computing for CU Boulder webpage. Support information designed for IT professionals is on the Secure Computing - Information for IT Professionals page.

All other computers will need to be enrolled in the Secure Computing framework over time. The first step in this process is for each department to take an inventory of its computers so they can develop a plan to bring all its computers into compliance with the Secure Computing Standard by October 2025.

Why does CU Boulder need computer and server standards?

  • The complexity, speed and number of cyber threats are increasing and colleges and universities are being targeted by aggressive cyber attacks.
  • We need to better support hybrid teaching, learning and work in a secure manner.
  • A security disparity exists between those whose devices are managed by campus IT professionals and those that are not.
  • We must advance campus technology in a manner that keeps a CU Boulder education affordable and attainable for a robust and diverse student body.

These changes are among a number of significant changes CU Boulder is making to create a hybrid-smart IT environment for CU Boulder. Learn more about these changes on the OIT Major Projects & Service Direction page. 

Computer standard

To ensure the integrity of the shared information technology environment, all university-owned computers will need to meet these computer standard requirements. Click the button below to review the full Computer standard policy. 

Server standard

A university server is considered any physical, virtual, or cloud-based device that manages network resources and is owned by the university or connected to a university-owned network. To ensure consistent application of protections and adherence to the CU baseline security requirements, campus servers will need to meet the requirements outlined on CU Boulder's policy page. 

How will this affect me?

Learn more about how this project will better protect computers and servers that you use or support:

Faculty and Staff
  • Secure Computing provided software will better protect data stored on your computer and in the cloud by providing vulnerability scanning, protection against unauthorized access to files on your computer, automatically deployed software and operating system updates, and antivirus and malware protection.
  • Through the CU Marketplace, departments can order new Dell and Apple computers that are fully compliant with the security standards.
  • Departments will be expected to make a plan to bring all its computers into compliance with the standards by October 2025. 
Research Institutes' Faculty and Staff
  • Both computer and server standards will apply to research institutes. The timeframe for adoption and compliance will begin in 2023 using a phased approach.
  • All servers on a campus network that are used by a CU-governed campus organization must be aligned with the standards for servers.
IT Support Professionals
  • Through the CU Marketplace, departments can order new Dell and Apple computers that are fully compliant with the security standards.
  • Departments will be expected to make a plan to bring all its computers into compliance with the standards by October 2025.
  • Support teams (department IT practitioners, Buff Techs, etc.) will be provided with support documentation and tools to help bring their customer bases into compliance with the defined standards. 
Server Administrators
  • All servers on a campus network, that are used by a CU-governed campus organization, must be aligned with the standard for servers.
  • By July 29, 2022, all Windows-based servers must have Microsoft Defender configured to report status.
Marketplace purchasers
  • Starting in 2023, computers purchased through the CU Marketplace will include software that allows for the device to meet baseline security standards for university-owned computers.
Student Organizations
  • All Windows-based servers on a campus network, that are used by a CU-governed campus organization, must be aligned with the standard for servers. This includes servers that are used by CU Boulder student organizations.
  • By July 29, 2022, all Windows-based servers must have Microsoft Defender configured to report status.

Contact Us & FAQ

Visit the Secure Computing FAQ for more information. If you have project-related questions, send an email to oitfeedback@colorado.edu with Secure Computing Project in the subject line.