How To: Secure Your Computer

Vulnerabilities are discovered frequently in software and they put your computer, data and the enterprise at risk. In order to stay secure and compliant with Mass General Brigham policies, make sure that you are running a current, supported Operating System (OS) and that your software applications are up to date.

Please note: If you are using a Vendor-provided device, please do not follow the instructions below. Work with the vendor and your site CIO. You may need to request a variance from Information Security.

Devices connecting to the Mass General Brigham Network are checked for compliance with security requirements by our Network Access Control (NAC) tool. All non-compliant, compromised or infected devices are removed from the network.

HOWTO: Determine whether you are using a standard or non-standard computer

 

Mass General Brigham Standard Windows

Non-standard or personally owned Windows

Macintosh

Notes

Antivirus Software Updates to antivirus software are pushed to your device when connected to the network.

Windows 10 devices should use the built-in Windows Defender Antivirus.

Other Approved AV Software

How To: Intune - Enroll Your Personal Windows Device


Other Approved AV Software

Ensure you have antivirus installed on the device with updated virus definitions.
 
ForeScout SecureConnector  This agent is already installed or will be pushed to your device when connected to the network.

Windows32bit_download.exe
Windows64bit_download.exe
Instructions

Note: This installer is silent. Once you open the download and give permission to install, it will install without user interaction, and then the installer will delete itself.

** To check if you're using a 32-bit or 64-bit Operation System on a Windows computer, right-click on My Computer, and select Properties.  The version is displayed next to System Type. 

Updated 8/29/2023

Is your Mac ready for NAC? Visit this KB article for instructions to:

Network Access Control (NAC) is a component of the MGB Digital Information Security Program. NAC ensures devices connecting to the MGB network are compliant with specific security policies. The agent currently used at MGB is ForeScout SecureConnector. 

More information for Technical and Administrative Staff

Operating System (OS) See KB0039035 

 

See KB0039035 

How To: Intune - Enroll Your Personal Windows Device

Apple, and therefore MGB Digital, only supports the current Operating System and two versions prior. 

 

How To: Intune - Enroll Your Personal Mac

Microsoft, and therefore MGB Digital, will no longer support Windows 7 as of January 2020. 

Patches Patches are pushed to your device when connected to the network.

HOWTO: Run Windows Updates 

How To: Intune - Enroll Your Personal Windows Device

How To: Intune - Enroll Your Personal Mac

 
CrowdStrike  CrowdStrike is pushed to your device when connected to the network.

Download CrowdStrike - INFO: CrowdStrike Falcon Sensor Guide 

How To: Intune - Enroll Your Personal Windows Device

How To: Intune - Enroll Your Personal Mac

INFO: CrowdStrike Falcon Sensor Guide

 

 

 

 

Encryption Contact the Digital Service Desk

Contact the Digital Service Desk

How To: Intune - Enroll Your Personal Windows Device

How To: Intune - Enroll Your Personal Mac

HOWTO: Encrypt your Mac using FileVault 2

 
Report Phishing Button   The Report Phishing button is available on your Outlook toolbar for Windows and Macintosh computers, OWA and the Outlook application on your smartphone. The Report Phishing button is available on your Outlook toolbar for Windows and Macintosh computers, OWA and the Outlook application on your smartphone.

What to Do If You Receive a Suspicious Email

  • On your workstation, highlight the message in your Outlook Inbox and click the Report Phishing button or Forward as Attachment to @email
  • On your smartphone, open the email in the Outlook app and tap the Add-ins (…) icon. Tap the Report Phishing button. Tap OK to confirm.

The Report Phishing button makes it easier for you to report suspicious emails to MGB Digital Information Security.

If you think you've received a phishing email, do not

  • open, 
  • click on any links in the body of the email,
  • or reply to the message. 

HOWTO: Report Spam / Phishing Email, Phone Call or Text

Please contact the Digital Service Desk with any questions or concerns regarding any of these steps. 

 

Go to KB0041569 in the IS Service Desk