1

OCI environment optimization and virtual firewalls deployment, campus firewall replacement

FW and VPN replacement

2

Inventory of hardware, software, and licenses owned by ITS

Fixed Assets Banner module will be configured to manage all District's assets

3

Practice Directives/Policies AP (admin procedures) and BP (board policies)

On-going. Current focus is email maintenance and retention practice directives

4

SSO, Accounts management, iDaaS migration to hosted services - related to Identity as a Service project

Single Sign On implementation

5

MFA rollout

Multi-factor authentication for employees

6

On-boarding/Off-boarding policies for employees

ITS needs the policy and automation reports developed to ensure on-boarded employees

7

Banner 8 PIN to access payroll docs

PIN expires, and employees are not able to access their payroll docs (incl W2). The PIN needs to be replaced with MFA

8

Identity as a Service Portal Guard IDaaS

Move RAMID to the AWS cloud

9

Migration away from legacy IP addresses (147.144 /16)

Migrating to private ip's

10

Eduroam rollout to all campus buildings

new SSID rollout

11

Bookstore move to Smith Hall

Move all systems and prepare infrastructure for the upcoming move

12

Simplify Nudge system

BBH system configured to send class payment reminders to registered students

13

Papercut

Student printing with Konica Minolta

14

KM printing for employees

Faculty and employees print services enablement from any printer

15

Finance Dashboard

Need a web-based dashboard updated daily, reflecting budget status

16

Labs authentication standardization

standardize on student logins and imaging software, printing software, and centralize domain controllers currently located in labs

17

Microsoft 2012 servers removal from service

2012 servers are end of life and need to be replaced as they are considered a cybersecurity vulnerability

18

Time and Effort form creation for one of the SIG reports

Need to be able to push the required form into Form Fusion

19

Windows 2008 servers refresh

Windows 7 Extended Security Updates (ESU) include security updates for critical and important issues as defined by Microsoft Security Response Center (MSRC) for a maximum of three years after January 14, 2020

20

Banner document management AXRM migration to Output Transformation Server (OTS)

AXRM needs to migrate to OTS

21

All Deans and department chairs permissions review

Identify deans and dept chairs permissions, validate and clean up existing settings. Standardize access to forms, queries, and reports.

22

Additional Data Center compute and storage capacity

$85k (storage + support)
Planning for a 3-year expansion, for those services that remain on-prem

23

Simplicity

Software to be used by DSPS as Student Information System

24

Specialized security systems for SFPD (cameras)

ITS doesn't have direct management of the cameras. This is a POC.

25

There is a time and effort module within BANNER that hasn't been turned on.

Time and effort tracing for FreeCity needs to commence to address previous years' audit findings

26

IPQuality System (IPQS)

Tool to identify fraudulent college applications

27

Degree Works upgrade

5.0.6 to 5.10

28

Campus technology refresh budgeting

Procure and install technology refresh for end user MAC computers, lab computers, and printers

29

Conlan Hall relocations

Build infrastructure and assist Facilities with end users' relocations

30

Smart Classrooms

There are approx 500 classrooms across campus, about 100 of them are smart classrooms. Upgrade 20 Downtown center classrooms.

31

MAC employee training

Ensure all desktop support analysts received basic and/or certification training to support end users' requests

32

Smart Classrooms, Chinatown

Upgrade 20 Chinatown center classrooms to smart standards.

33

Archive site decommissioning

Need to decommission legacy website and help CM's move content to other locations

34

Fog server upgrade

Legacy server that needs to be upgraded and become accessible (for ADA compliance)

35

STEAM Infrastructure

Designing network infrastructure for STEAM building

36

DRT Infrastructure

Designing network infrastructure for DRT building

37

AWS Discovery and Documentation

ITS supports a few servers in AWS cloud

38

CCSF fiber lease renewal with City of SF

20-year lease is coming to renewal

39

Cybersecurity Penetration Test

Sacramento CCC Chancellor's office sponsored CCSF cybersecurity penetration test

40

DataCenter UPS

Broken UPS needs to be replaced

41

A5 Security Implementation

Under guidance of State CO, Healthcheck and security measures to be implemented in O365

42

Java licenses renewal contract

Oracle announced different chargeback structure for using Java licenses. District needs a 5-year contract to cover the use of these licenses.

43

Payroll data going back to 1984

Requested as a matter of public record

44

OLET support

x-train OLET personnel on their IT needs

45

Penetration test finding - Immediate p.16, p.60

Require SMB Signing on 636 devices

46

Penetration test finding - Immediate p.17

Enforce RDP Network Level Auth Safeguards on 91 devices

47

Penetration test finding - Immediate p.18

MS SMBv1 Protocol Remote Code Execution Vulnerability 9 systems to be patched

48

Penetration test finding - One Year p.19

CodeMeter RunTime Heap Leak & Denial of Service 2 systems affected

49

Penetration test finding - One Year p.19

Unsupport Software Mitigations (legacy software)

50

Penetration test finding - One Year p.23, p.62

Missing Patches (Unsupported Applications)

51

Penetration test finding - Three Years p.24

SMB Null Session Authentication 2 windows shares on remote hosts

52

Penetration test finding - Three Years p.25

Consider Disabling Multicast DNS (mDNS)

53

Penetration test finding - Three Years p.26

Unsupported Software Mitigations

54

Penetration test finding - Three Years p.29, p.63

Missing Patches 

55

Simple Syllabus Banner integration

OLET requested Simple Syllabus integration with Banner