Scenario 5: Fulbright or Sabbatical – Extended Travel; University Provided Laptop
Checklist Heading link
Fulbright or Sabbatical—Extended Travel; University Provided Laptop
Before Travel
- Register the trip with the University for medical insurance (free for faculty and staff)
- Review the State Department Directorate of Defense Trade Controls for the country of travel
- If not already done, please consult the Export Controls Compliance Officer (uicexport@uic.edu) to conduct restricted party screening related to your travel as soon as possible before travel (https://research.uic.edu/compliance/export-controls/restricted-party-screening-and-visual-compliance/)
- If traveling with UIC data and/or property, please contact the Export Control Compliance Officer, uicexport@uic.edu to obtain a draft letter to document that you have permission to travel with this UIC data and/or property.
- Confirm any software access that will require verification while you are traveling and how you will be able to reverify (e.g. via VPN)
- Don’t lose data – have a backup and move data off the device to appropriate cloud storage
- Confirm your computer is backed up with UIC Crashplan in case of loss, damage, theft, or confiscation
- Confirm removal of export controlled, restricted information and sensitive data from device, including patient data, proprietary research information, etc.
- Confirm removal of export controlled, dual-use software from the device. For questions about potential dual-use software, contact ORDI2@uic.edu.
- Remove items stored locally on your computer and move to cloud storage. For University-related storage use University OneDrive, Google Drive, or Box account
- Limit usage of local device storage
- Plan to Safely Use Your Machine
- Confirm installation of active encryption software
- Confirm installation and log in for UIC VPN software
- Confirm installation of and log in for eduroam
- Confirm 2-Step Authentication for University Resources
- Confirm installation of anti-malware software
- Contact the UIC Export Controls Compliance Officer as soon as possible to obtain any necessary export licenses or documentation, if any, for materials or software that you are carrying with you. Obtaining a specific export license could take weeks or months to obtain.
- Cell Phone Safety
- Contact your cell phone provider to determine what international data options are available to you. Remove TouchID or face log in from your cell phone
- Consider backing up your phone, doing a factory reset before you travel, and then reinstalling your data after returning home
- Consider getting a local separate device for the duration of the trip. If you chose this option, determine whether this will be used for 2-Step Authentication
While Traveling
- Be safe physically with your devices
- Have a plan for device security while abroad. Do not leave devices unattended or unsecure
- Do not plug into your laptop any accessories (flash drives, charging cables, etc) that you didn’t bring with you or that you have used with other devices not under your control
- Don’t plug your phone into USB outlets on charger kiosks
- Use your devices and secure wifi
- Avoid using business center or public computers or other storage
- Limit usage of “free” wifi in cafes, hotels, restaurants, airport, etc.
- Use VPN software to access the internet, including University resources
- UIC General-Use will protect traffic to UIC resources; the UIC Library-Resources VPN will protect all traffic
- Limit access University resources or University systems containing high-risk, sensitive, or export-controlled projects or software. Discussions with security teams for each high-risk system is required about additional mitigation plans
Note log ins you use during the trip and be on the lookout for suspicious updates to data or files
After Returning Home
- Update University password
- If you suspect device tampering or were unable to control access to your device; inform College/Department IT support staff of your concerns and have the device re-imaged to a known secure state