skip to content

IT Help and Support

University Information Services

Computer Security Incident Response Team (CSIRT)

The Computer Security Incident Response Team (CSIRT) is a team of IT security staff that co-ordinates the response to IT security incidents. It works directly with IT staff around the University.

Cyber security testing services

UIS operates a penetration and security testing capability to support institutions in the University. Security testing is an effective way to identify flaws and exposures in technical systems and in information-handling processes, and thereby to get advance warning of potential problems before they occur and cause disruption.

Minimum security requirements for systems and services

The minimum security requirements for systems and services are known in UIS as security non-functional requirements (S-NFRs) and are part of the full non-functional requirements (NFRs) set by the Technical Design Authority (TDA) for all new systems and services, as well as changes to current systems and services. These requirements will help service owners, project and technical leads implement effective security standards for their services. Find out if your new or existing system meets the security requirements.

Managed Firewall Service

UIS's Managed Firewall Service gives you control over who accesses your institution's resources via the internet, so you can protect your private network while meeting your users' needs. It can be tailored to your institution's specific requirements, and it is delivered as a fully managed service.

Intrusion Prevention System

The Intrusion Prevention System (IPS) inspects all data that crosses the network boundary between the Cambridge University Data Network (CUDN) and Janet, detecting and blocking malicious network traffic.

UK GDPR systems checklist

Check how well your system complies with the UK's General Data Protection Regulation (UK-GDPR). Use one of these checklists to measure your system's compliance.


Cyber security special interest groups and threat intelligence sites

Keep informed of the latest cyber threats. Find links to special interest groups for information and cyber security, alongside some of the best threat intelligence sites.

Information and Cyber Security Strategy

Read the strategy for the next 3 years for information and cyber security at the University of Cambridge.


MyNCSC from the National Cyber Security Centre

Set up Web Check and Mail Check reports to monitor your domains and email domains for any security vulnerabilities.

Preparing for Cyber Essentials

Cyber Essentials is a UK government-backed certification scheme that provides a framework for organisations to demonstrate that they have taken appropriate measures to secure their IT systems against cyber threats. Find out more about accreditation and the factors you need to consider before you start.