##
|
Project name
|
Project description
|
1
|
Remote access VPN for employees
|
VPN solution replacement with Global Protect Palo Alto Networks VPN
|
2
|
Inventory of hardware, software, and licenses owned by ITS
|
Fixed Assets Banner module will be configured to manage District's IT assets
|
3
|
Email accounts' maintenance and retention practice directives
|
Practice directives describing email accounts' maintenance and email messages retention practices
|
4
|
Campus technology refresh
|
Identify and refresh legacy end users' workstations, classroom A/V equipment, and labs equipment
|
5
|
MFA rollout
|
Multi-factor authentication for employees
|
6
|
On-boarding/Off-boarding policies for employees
|
ITS needs the policy and automation reports developed to ensure on-boarded employees
|
7
|
Conversion from Data Connect to Ellucian Experience
|
Migration to Ellucian Experience SaaS
|
8
|
Identity as a Service Portal Guard IDaaS
|
Move RAMID to the AWS cloud
|
9
|
Decommission unused ARGOS reports
|
There are approximately 4,000 ARGOS report, need to analyze usage and decommission unused reports
|
10
|
Implement GOTO licenses for end users' support
|
Implement software for ITS support analysts to provide remote end users' equipment support
|
11
|
Papercut
|
Student printing with Konica Minolta
|
12
|
KM printing for employees
|
Faculty and employees print services enablement from any printer, standardization on multi-function copiers and decommissioning of legacy printers, migration of existing printers to new system Equatrack
|
13
|
Labs authentication standardization
|
standardize on student logins and imaging software, printing software, and centralize domain controllers currently located in labs
|
14
|
Microsoft 2012 servers removal from service
|
2012 servers are end of life and need to be replaced as they are considered a cybersecurity vulnerability
|
15
|
Time and Effort form creation for one of the SIG reports
|
Need to be able to push the required form into Form Fusion
|
16
|
Windows 2008 servers refresh
|
Windows 7 Extended Security Updates (ESU) include security updates for critical and important issues as defined by Microsoft Security Response Center (MSRC) for a maximum of three years after January 14, 2020. Migration and decommissioning of all legacy servers by Fall, 2024
|
17
|
Banner document management AXRM migration to Output Transformation Server (OTS)
|
AXRM needs to migrate to OTS
|
18
|
Banner users permissions review and permissions classes organization
|
Identify current permissions, validate, and clean up existing settings. Standardize access to forms, queries, and reports based on department/position
|
19
|
Simplicity
|
Software to be used by DSPS as Student Information System
|
20
|
Specialized security systems for SFPD (cameras)
|
ITS doesn't have direct management of the cameras. This is a POC.
|
21
|
There is a time and effort module within BANNER that hasn't been turned on.
|
time and effort tracing for FreeCity needs to commence to address previous years' audit findings
|
22
|
Smart Classrooms
|
There are approx. 500 classrooms across campus, about 20% of them are smart classrooms. Classroom updates are planned for 20 Chinatown classrooms.
|
23
|
Fog server upgrade
|
The legacy server will be upgraded for ADA compliance
|
24
|
STEAM Infrastructure
|
Designing network infrastructure for STEAM building
|
25
|
DRT Infrastructure
|
Designing network infrastructure for DRT building
|
26
|
Student Success Building Infrastructure
|
Designing network infrastructure for the building
|
27
|
CCSF fiber lease renewal with City of SF
|
20-year lease is due for renewal in June, 2024
|
28
|
Cybersecurity Penetration Test
|
Sacramento CCC Chancellor's office sponsored CCSF cybersecurity penetration test
|
29
|
DataCenter UPS
|
Broken UPS needs to be replaced
|
30
|
Automate student password reset via ChatBOT
|
Implement automated student email password reset via Rocky the RAM ChatBOT
|
31
|
Penetration test finding - Immediate p.16, p.60
|
Require SMB Signing on 636 devices
|
32
|
Penetration test finding - Immediate p.17
|
Enforce RDP Network Level Auth Safeguards on 91 devices
|
33
|
Penetration test finding - Immediate p.18
|
MS SMBv1 Protocol Remote Code Execution Vulnerability 9 systems to be patched
|
34
|
Penetration test finding - One Year p.19
|
CodeMeter RunTime Heap Leak & Denial of Service 2 systems affected
|
35
|
Penetration test finding - One Year p.19
|
Unsupported Software Mitigations (legacy software)
|
36
|
Penetration test finding - One Year p.23, p.62
|
Missing Patches (Unsupported Applications)
|
37
|
Penetration test finding - Three Years p.24
|
SMB Null Session Authentication 2 Windows shares on remote hosts
|
38
|
Penetration test finding - Three Years p.25
|
Consider Disabling Multicast DNS (mDNS)
|
39
|
Penetration test finding - Three Years p.26
|
Unsupported Software Mitigations
|
40
|
Penetration test finding - Three Years p.29, p.63
|
Missing Patches
|
41
|
Simple Syllabus Banner integration
|
OLET requested Simple Syllabus integration with Banner
|