Information Technology Policy Manual 2022

PC Secure Configuration Standards City of Greensboro, NC Cyber Security Division

PURPOSE Define secure configuration standards to protect PCs from unauthorized access and disclosure of sensitive information. SCOPE The standards apply to all City owned and leased PCs.

ROLES AND RESPONSIBILITIES Function

Responsibility

Cyber Security Division

• Work with technology groups to define the standards • Communicate the standards • Run vulnerability scans against PCs to ensure compliance to the standards • Configure PCs according to the defined standards

IT Systems Administrator

STANDARDS 1) Change the local Administrator’s account name. 2) Change the number of cashed logons to 2. 3) Enable screen saver lock after 15 minutes of inactivity. 4) Enable User Access Control (UAC). 5) Disable the execution of Autorun.ini files. 6) Enable automatic virus scanning of USB flash drives. 7) Install SCCM agent and deploy all required security updates. 8) Ensure CrowdStrike is installed on the PC. 9) Enable the Windows firewall. 10) For laptops, ensure the Cisco Umbrella plug-in is installed with the Cisco AnyConnect client.

5 7 | P a g e

PC Secure Configuration Standards

2/21/2022