The articles and information provided below can serve as rough guides for implementation and as examples of how OIT-MDS met EPS compliance.
In several instances, they can be adopted completely without local modification. However, some may need to be modified to meet the needs of your specific organization or department.
This page provides Endpoint Protection Standard - Rule 08.00.18 (EPS) compliance status for university-owned endpoints managed by the OIT Managed Desktop Service.
These controls are met purely on the basis of the endpoint having a working software agent associated with an approved CMS and being joined to the domain.
|
Control |
Compliance Status |
Policy and/or Guidance |
|
Anti-malware and antivirus software |
Compliant |
Manage Endpoint with an Approved CMS |
|
Authentication |
Compliant |
Manage Endpoint with an Approved CMS |
|
Software Inventory |
Compliant |
Manage Endpoint with an Approved CMS |
|
Sensitive Information Identification and Remediation |
Compliant |
Manage Endpoint with an Approved CMS |
|
Host-based Firewall |
Compliant |
These controls require additional configuration and/or systems outside of inclusion in the CMS.
|
Control |
Compliance Status |
Policy and/or Guidance |
|
Least Privilege Access |
Compliant |
|
|
Application Control |
Compliant |
|
|
Web Reputation Filtering |
Compliant |
|
|
Encrypted Network Communication |
Compliant |
|
|
Full Disk Encryption |
Compliant |
All questions on policy should be escalated to NCSU OIT Security and Compliance. All questions pertaining to this document or process can be escalated to the OIT_DESKTOP_SUPPORT leadership.
Identify an Unmanaged Desktop or Laptop
Submit EPS Exception for Billboards or Kiosks
Endpoint Protection Standard (EPS) Attestation Instructions
Title: Endpoint Protection Standard Compliance and Implementation