...
We encourage you to review the University’s Overview and FAQ at
...
Some key points
...
The Information Security Office (ISO) collaborates with the campus community to safeguard Carnegie Mellon University's computing and networking infrastructure against threats to our information resources.
CrowdStrike is designed to prevent behavior it determines to be malicious. If the sensor blocks an application or network connection, you will receive a pop-up notification that malicious behavior was detected. These notifications are simultaneously reported to the Information Security Office (ISO) for analysis. If further investigation or remediation is necessary, an ISO staff member or your local departmental security administrator will contact you. If the issue is causing a work stoppage, please contact the ISO or iso-ir@andrew.cmu.edu immediately.
Any data collected by CrowdStrike may be viewed by authorized personnel within the ISO and independent security units (i.e. ECE ITS) only when necessary to perform their job duties in accordance with the University Computing Policy.
IT personnel with authorization may view a subset of CrowdStrike data for systems they support directly as part of their system management duties. This data includes installation status, sensor health, vulnerabilities, detections, and automated prevention.
CrowdStrike looks for suspicious processes and applications. To monitor computer activity, the system records login information, application usage, and file access.
The software does NOT record keystrokes or the contents of documents, email messages, or chat communications.
...