St. Francis College · Board Portal

Program Detail

FY2026 Strategy · CYB 6010

Back to Strategic Programs

Strategic Program

Zero Trust Access & Identity Governance

Establish verified identity and least-privilege access across all institutional systems processing FERPA data

Risks: R-2, R-3, R-5

Executive Sponsor

CFO / IT Director

Program Owner

IT Director / CISO

Budget

$30K-$45K Year 1

Status

Year 1 Planned

Program Objectives

1.Extend Microsoft Entra ID MFA to 100% of SFC accounts by Month 6
2.Enforce least-privilege access across Banner ERP, SFC Attend, and SharePoint
3.Deploy privileged access management for admin accounts by Month 9
4.Conduct semi-annual access certification with automated deprovisioning

Phase 1

Months 1-4

· MFA rollout to 100%
· Conditional access policies
· Banner admin account inventory

Phase 2

Months 5-9

· PAM deployment
· Privileged session monitoring
· Dataverse access review

Phase 3

Months 10-18

· Continuous access certification
· Automated deprovisioning
· Zero Trust architecture complete

Expected Outcomes

100% MFA coverage
PAM for all admin accounts
Semi-annual access reviews operational

Success Metrics

· MFA coverage %
· Privileged accounts under PAM
· Access review completion