Information Security

Information Security Concept

According to the requirements of the "VwV Informationssicherheit" of the state of Baden-Württemberg, the kiz (as well as the university as a whole) has the task of establishing an Information Security Management System (ISMS) in order to guarantee basic IT protection according to the recommendations of the BSI for its central and mission-critical systems. The ISMS at the kiz is part of the service management based on the ITIL process model. The kiz has appointed two Information Security Officers (ISO) to implement the security concept, to comply with security guidelines and to organize and design the underlying security processes in its services and internal operational processes. The kiz explicitly provides the university with a number of services relating to IT security and provides a collection of best practice guides and instructions for security-conscious handling of IT applications.

Recommendations & Guidelines

Information security is a very complex topic, where technical and organizational measures must be applied equally in order to achieve sufficient protection for the entire organization. In order to make this somewhat easier for you, we provide here a series of guidelines and advisors which have been developed from corresponding recommendations, e.g. of the BSI, and the exchange with other information security officers in the state of Baden-Württemberg.

Information Security Awareness Campaign

Note: The page can only be accessed uni-internally or via VPN access.

In cooperation with SoSafe GmbH, we have provided a broad and very attractive range of continuing education courses in the areas of IT security and data protection, initially limited until Jan. 25, 2022. The campaign is currently being evaluated. We will inform you about the main contents and results on our website.

Virus Protection

Our service includes the provision of an anti-virus software package for Windows users, the maintenance of a virus scanner on our central email server, and support in the cut-off process of infected devices.

Digital Certificates

A digital certificate is an electronic set of data - like a passport - which describes certain traits of a person or device and can be validated through cryptographic means. When creating a new certificate a private and a public key are computed. Flowingly, the public key is supplemented with further data about certain traits, for example the name of the certificate receiver, which are further confirmed by the certificate issuer with their own signature. The hereby resulting set of data or document is the digital certificate of the person or device. In accordance with the DFN-PKI (Deutsches Forschungsnetz - Public Key Infrastructure) the kiz can issue user or server certificates for members of Ulm University on the security level 'global'.

News

Contact

Information Security at kiz

Guido A. Hölting & Florian P. Böck
Information Security Officers (ISO)
Phone: +49 (0) 731 / 50 - 30300
Email: kiz(at)uni-ulm.de

Information Security at University

Florian Oberlies
Chief Information Security Officer (CISO)
Phone: +49 (0) 731 / 50 - 25183
Email: ciso(at)uni-ulm.de

Communication and Information Centre (kiz)

Please contact us if you have questions or problems related to the kiz services:

Office hours
Monday - Thursday
09:00 h - 12:00 h and 13:00 h - 15:30 h

Friday 09:00 h - 12:00 h

Phone
+49 (0) 731 / 50 - 30000

Telefax
+49 (0) 731 / 50 - 1230000

Order a Callback
helpdesk(at)uni-ulm.de
Support Portal
[more]

Service Points are locations where you can visit us personally.

[more]

Using self-service functions of the Identity Management System (IDM): Administer permissions, subscribe to services, change passwords.

IDM Self Services
[more]

Research in the library stock: monographs, textbooks, magazines, university publications, e-books, e-journals, national licenses, and the contents of the institutional repository OPARU.

library catalogue::local

With about 400 keywords you will get direct access to our services. If something isn't listed, please contact our Internet Editorial Office.

A-Z List

more to: Information Security

Alliance for Cyber Security
Initiative of BSI, companies and institutions. The portal provides information on current cyber threats, among other things.

BSI IT-Grundschutzkompendium 2022

CERT-Bund Security Warnings

Heise Security
On Heise Security you will find daily news about security vulnerabilities and critical updates that may also be of importance to you privately.

ISMT Newsletter

Issue December 2020 (PDF)
News about information security at ulm university

General IT security incident
If you want or need to report a general IT security incident, please contact cert(at)uni-ulm.de by email. This ensures that your report reaches the responsible team (consisting of CISO & the kiz-ISOs) and can be processed promptly.

Report Incident

Data breach
If you have been hacked and business data has fallen into the wrong hands, this is a reportable data breach according to Art. 33, 34 DSGVO. Use the following Web form for this purpose only available internally at uni):

Report data breach

Blocking IP addresses
In the event of a virus attack or other security-relevant anomalies, IP addresses will be blocked by us. The re-activation must be applied for. If you have any questions, please contact our helpdesk.

Blocking the external network connection
The university firewall blocks certain connections. If necessary, additional blocks can be set up to protect your end devices.
[more]