AnDREa - Organization | Information Security

Information Security
Using Azure Security Score
First version: 2023-01-27 Last updated: 2024-03-21 Last update(s): Some more detailed explanations. Will be adding more recommendations over time. The Azure Security Score is a valuable tool to identify, understand and improve the security posture ...
Account Sharing
Summary Do not share accounts, because: The one approving MFA is personally liable for the actions of others It increases the risk for phishing attacks You are not compliant with your GDPR and ISO27001 requirements Audit/logging requirements Ensuring ...
Identity Protection - Risky users
anDREa monitors and evaluates for "Users at Risk" warnings. User at risk detected We detected a new user with at least high risk in your andreanl directory. This might be because we noticed suspicious account activity or we found their emails and ...
Overview of email notifications
This article outlines when email notifications are send to whom. Type Event Email send to Workspace Workspace creation Accountable User Invitation User Data ingress Upload ready (large files) Uploader Data egress Request Privileged Members (Owners) ...
Virus Scanning
All Windows VMs have Windows Defender enabled. On access the threat will be assessed and in case the file is compromised, the user will be warned and the file will be deleted. Example Get test files from https://www.eicar.org/?page_id=3950 (own risk) ...
Sign-in and Audit Logs
Introduction By default 30 day rolling sign-in and audit logs are created in order to trouble shoot, provide evidence, improve the quality of myDRE. Access to sign-in and audit logs The Access Control Policy (A.9.1.1) applies. Logs will not be shared ...
Event logging - A.12.4.1
Introduction anDREa is committed to protecting the security of its business information in the face of incidents and unwanted events and has implemented an Information Security Management System (ISMS) that is compliant with ISO/IEC/27001:2013, the ...

Popular Articles
Activating your new @mydre.org account
Before you can access your DRE workspace(s) at mydre.org, you need to activate your @mydre.org account. Below, we explain the steps in this activation process, along with screenshots for illustration. Prerequisite: your new @mydre.org username, which ...
R and RStudio using External Access rules
This method of downloading R packages is outdated! This article will not be updated any longer. IP addresses are often subject to change. Therefore, the domain allowlisting feature has been introduced and it is self-service for Accountable and ...
Atlas.ti
Older versions of Atlas.ti will show the option to validate your license offline. Unfortunately, this procedure no longer works. You can still use Atlas.ti by allowlisting the domain atlasti.com, as explained under Step 2 in Validating your Atlas.ti ...
Python, Anaconda and JupyterLab
With domain allowlisting now being a self-service feature, this is the preferred option. For proxy settings in Anaconda in combination with domain allowlisting, please follow this article: ...
Proxy configurations Anaconda
First version: 2022-10-31 Latest version: 2023-11-16 Last change(s): Clarification in the introduction; clarifying instructions; added screenshots. This is a community effort. The article was created by the anDREa Support Team in their spare time. If ...

AnDREa - Organization | Information Security | Help Center

Information Security

Using Azure Security Score

Account Sharing

Identity Protection - Risky users

Overview of email notifications

Virus Scanning

Sign-in and Audit Logs

Event logging - A.12.4.1

Popular Articles

Activating your new @mydre.org account

R and RStudio using External Access rules

Atlas.ti

Python, Anaconda and JupyterLab

Proxy configurations Anaconda