[All] FW: Urgent Action: Report Any NASA Devices with Kaspersky-branded products; Prevent Kaspersky products from accessing NASA systems or networks

Wed Sep 27 10:32:04 PDT 2017

Bernie, thank you for the prompt!

We, ESPO, do not use this software (antivirus) so, it is of no concern to
us.

--
Dan Chirica
Earth Science Project Office
NASA-Ames Research Center
Phone: (650) 604-0436 | Mobile: (925) 640-0463

On Wed, Sep 27, 2017 at 10:23 AM, Luna, Bernadette (ARC-SGG) <
bernadette.luna at nasa.gov> wrote:

> Is this important to us?
>
> b
>
>
>
> *From: *Agency-IT-Outreach <agency-it-outreach at mail.nasa.gov>
> *Reply-To: *Agency-IT-Outreach <agency-it-outreach at mail.nasa.gov>
> *Date: *Wednesday, September 27, 2017 at 10:09
> *Subject: *Urgent Action: Report Any NASA Devices with Kaspersky-branded
> products; Prevent Kaspersky products from accessing NASA systems or networks
>
>
>
> *Date:*
>
> September 27, 2017
>
> *To:*
>
> All NASA Personnel
>
> *Subject:*
>
> *Urgent Action: Report Any NASA Devices with Kaspersky-branded products;
> Prevent Kaspersky products from accessing NASA systems or networks.*
>
> *What’s Happening: *
>
> The Department of Homeland Security (DHS) has determined that risks
> presented by Kaspersky-branded products warrant their removal and
> discontinued present and future use. All Federal Agencies have been
> directed, by DHS, to ensure any Kaspersky branded products are removed from
> all Federal information systems. The NASA Security Operations Center (SOC)
> is working with Center IT Security Teams to identify, and comply with DHS
> Binding Operational Directive BOD-17-01, within 90-days (of Sept. 13, 2017).
>
>
> The BOD defines Federal information system as, “An information system used
> or operated by an agency or by a contractor of an agency or by another
> organization on behalf of an agency."  This definition is drawn from OMB
> Circular No. A-130.
>
>
> To the extent an International Partner system is owned by a foreign
> government, DHS has stated these systems would *not* be subject to the
> BOD.
>
> *Action:*
>
> Users, System Owners, System Administrators, and all with knowledge of, or
> suspect Kaspersky-branded products are present on any NASA information
> system or device, shall report the instance to their Center IT Security
> Team or the NASA SOC. Center IT Security Teams and the NASA SOC will work
> with System Owners to ensure removal of Kaspersky-branded software/products
> in accordance with the Department of Homeland Security Binding Operational
> Directive BOD-17-01 guidelines.
>
> Additionally, any non-NASA information systems or devices containing
> Kaspersky-branded products shall not be used to access any NASA network, or
> NASA information system, other than those accessible to the general public.
> This includes accessing NASA systems with personally-owned devices, via
> NASA wireless and Guest Networks.  Such access or use will be considered as
> an IT Security “Improper Usage” Policy Violation.
>
> NASA users are reminded that the Agency standard for host-based anti-virus
> and anti-malware software, is Symantec Endpoint Protection (SEP), per
> NASA-STD-2804, Minimum Interoperability Software Suite. Use of alternative
> products without prior CIO approval may be considered a Policy Violation.
>
> *Support:*
>
> Please contact your Center IT Security Officer (CISO), Center IT Security
> Team, or the NASA SOC, for questions or assistance.
>
> For questions, or to report any suspicious IT Security or cybersecurity
>  incidents, please contact the NASA Security Operations Center (SOC) 24x7
> via:
>
> ·         Phone: 1-877-627-2732 <(877)%20627-2732>
>
> ·         Email: soc at nasa.gov
>
> *This notice was sent by the Office of the Chief Information Officer.*
>
>
>
>
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://espo.nasa.gov/pipermail/all/attachments/20170927/e4d8c37f/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: image001.png
Type: image/png
Size: 107145 bytes
Desc: not available
URL: <http://espo.nasa.gov/pipermail/all/attachments/20170927/e4d8c37f/attachment-0001.png>