SF State's Information Security Program covers multiple facets of protecting information assets, whether they are recorded digitally, on paper, or through other media. Following SF State's Information Security policies and procedures is critical to helping protect you and the University. The mission of the SF State Information Security Office is to provide balanced and tailored campus-wide cybersecurity, information security, and privacy risk management services.
Security breaches of confidential or sensitive data have potentially serious consequences: for the person whose confidential information is compromised and for the University, which is accountable for upholding federal and state laws as well as CSU orders and regulations. In addition, individuals involved in unauthorized disclosure of information (even when accidental) may be subject to disciplinary and/or civil action.
Security Awareness Campaign
The September 2023 PhishMe campaign results are as follows:
Phishing training messages were sent to SF State Employees on September 10, 2023.
The susceptibility rate for employees (those who responded by clicking on the link) Decreased from 6.5 % to 1.8 %, a net decrease of 4.3 %.
The susceptibility rate for students decreased from 6.6 % to 4.5 %, a net decrease of 2.1 %.
245 employees reported the message using the Report Phishing feature.
159 students reported the message using the Report Phishing feature.
Within the first hour, 191 employees reported the phishing exercise using the Report Phishing feature.
Within the first hour, 108 students reported the phishing exercise using the Report Phishing feature.