Overview
Message from the Michigan Medicine Chief Information Security Officer (CISO):
Hello,
As the environment within our healthcare sector is increasingly at risk from cybersecurity threats, Information Assurance is taking increasingly assertive action to help protect our Michigan Medicine identities, data, systems, and networks. As a part of this effort, we deployed the Endpoint Privilege Management (EPM) service on managed Windows CoreImage endpoint devices such as laptops and workstations.
The EPM service will help further protect these devices which are the most common entry points for malicious actors and malware like ransomware. EPM allows escalated levels of access to be active only when necessary and inactive when not needed. This resource, KB0019206: How To Create and Manage Your Just-in-Time (JIT) Elevated Privileged Access, will provide you with the approval and JIT activation process.
All types of privileged access should follow this process. Any exception is to be submitted as a Risk Decision Request* for my review.
Thank you and consider me at your disposal,
Jack Kufahl
*Information regarding the submission of a Risk Decision Request can be found here: KB0015965: IA Cybersecurity Risk Decision Request
Note: The EPM Service will be rolled out to Izzy Mac endpoint devices at future phase.
Related Information
KB0019206: How To Create and Manage Your Just-in-Time (JIT) Elevated Privileged Access
KB0014337: Michigan Medicine User Profile Page (UPP)
KB0015965: IA Cybersecurity Risk Decision Request
KB0019583: Support Process Map for requesting Just in Time (JIT) Elevated Privileged Access