skip to content

IT Help and Support

University Information Services
 

CSIRT is a specialist IT security team. It co-ordinates the response to IT security incidents and threats with University IT staff.

 

What does CSIRT do?

CSIRT (Computer Security Incident Response Team) is a team of IT security staff that co-ordinates the response to IT security incidents, providing a second-line IT support team to college and departmental IT staff. CSIRT is able to draw upon the expertise of other UIS teams such as Server Infrastructure, Networks and the Service Desk. It liaises with recognised IT contacts in every University institution.

CSIRT is not an IT Service Desk and it does not provide direct support to general staff or students. General staff or students contacting CSIRT will be referred to their local departmental/college IT staff, or the UIS Service Desk if appropriate.

CSIRT activities include:

  • Co-ordinating the response to IT security incidents, where required, at the University of Cambridge.
  • Monitoring IT security infrastucture to detect computer security incidents or problems.
  • Providing technical IT security advice and assistance.
  • Advising on, applying or, where necessary, enforcing University policy in IT security.
  • Providing IT security alerts.
  • Promoting IT security best practices.
  • Co-ordinating with JANET-CSIRT, CISP and other external organisations.

It operates during normal UIS working hours, 09:00 to 17:00, Monday to Friday (excluding Public Holidays).

 

How to contact CSIRT

IT security incidents occur every day at the University. CSIRT is always interested in receiving information, reports or providing assistance.

  • If you are a Computer Officer (or similar) and have identified a potential security incident, please contact CSIRT.
  • If you are a general member of staff or a student, please contact your designated IT Service Desk first.

Email:

 

University Cyber-Security Incident process

CSIRT uses the University cyber-security incident process

 

Emergency actions

Where a major IT security incident threatens IT infrastructure, IT services or data across the collegiate University, CSIRT can take emergency actions to protect the majority of the University community and minimise the risk or impact of the threat – for example, a malware outbreak, DDoS attack or critically vulnerable system.

This can include the temporary blocking or disconnection of IT services, infrastructure or institutional networks, such that a threat is contained within a local institution.
 

Areas not covered by CSIRT

CSIRT is there to assist IT staff with computer security incidents. It does not provide assistance with other types of of incident, such as:

  • General IT incidents or problems.
  • Physical security threats, such as bomb alerts, theft or suspicious activity.
  • Human resource incidents, such as (cyber) bullying or disputes.
  • Financial fraud.
  • Criminal activities.
  • Prevent strategy.
  • IT service interruptions or downtime.
  • GDPR breaches.

The University has dedicated departments or teams that are responsible for these types of incident. They should be contacted if assistance is required.

UIS Service Desk

Phone padded  Service status line: (01223 7)67999
Website  Sign up for SMS/email status alerts
Website  Read major IT incident reports

UIS bITe-size bulletin

A regular newsletter aimed at the University's IT community, highlighting service and project news from UIS.

Sign up >

Latest news

Change to Raven login screen from Tuesday 14 February

26 January 2023

New login screen for current University members The login screen for Raven-protected websites and applications will change from Tuesday 14 February for current members of the University. It will become the same screen most of you are already familiar with from logging in to your University Microsoft account to access, for...

Changes to Microsoft Stream video sharing from Tues 07 Feb

26 January 2023

26 January 2023 What’s happening UIS is disabling uploads to Microsoft Stream (Classic), the old version of the video sharing app, on Tuesday 07 February. The new version is called Stream (on SharePoint). Teams meeting recordings are already being automatically saved to Stream (on SharePoint). More information: Stream (on...

Institutional File Storage (IFS) service release new features to Self-Service Gateway

18 January 2023

18 January 2023 Several new features are now live on the Self-Service Gateway run by the Institutional File Storage (IFS) service. IFS is a service for institutions to store and share everyday documents with colleagues. IFS Data Owners and Data Managers can use the Self-Service Gateway  portal to buy and administer storage...