Milestone Achieved: UC Davis Meets Cybersecurity Mandate 2025 Targets

Information and Educational Technology (IET) is thrilled to announce that UC Davis has successfully met the May 28 deadline for the Cybersecurity Mandate 2025. This milestone reflects months of dedicated collaboration, rigorous implementation, and unwavering commitment to securing our university's digital environment.

What We Accomplished Together

• 191,000+ email accounts are now protected by Multi-Factor Authentication (MFA)—a major leap forward in securing sensitive data and preventing unauthorized access.
• Our teams diligently worked to enable MFA across both IAM-managed and OU directory-based accounts, overcoming technical hurdles and coordinating across departments to ensure timely compliance.
• The Information Security Office continues to process exception requests, with a 30-day grace period in effect for pending MFA-related cases submitted by the deadline.
• Endpoint Detection and Response (EDR) deployment and cybersecurity training requirements continue to be on track. 

Individual Roles Mattered

This achievement would not have been possible without:

• The tireless efforts of IT leads, assistant deans, and security liaisons across all units.
• Continued vigilance in tracking new users, devices, and accounts to uphold compliance.
• Transparent communication and cooperation across campus teams and leadership.

Keep the Momentum Going

As we transition from the May deadline, here’s what you can do to maintain compliance:

1. Thank your team—a small gesture goes a long way.
2. Share resources like the Cybersecurity Mandate 2025 page: https://iet.ucdavis.edu/cybersecurity-mandate-2025
3. Review exception statuses in ServiceNow, if applicable.
4. Monitor for changes in users or systems to keep your unit secure.

Once again, congratulations to the entire UC Davis community for rising to the challenge! Your commitment to cybersecurity safeguards not just our systems—but our people and mission.