Transitioning from Google to OneDrive and Teams
To simplify campus storage options, provide better institutional support, and better align with State/SUNY information security mandates and insurance industry requirements, CNS will sunset support for many cloud storage solutions on campus, including the ESF Google ecosystem, on January 2, 2024.
The only acceptable storage solution for institutional data after this time, other than on-campus file servers (Saturn or Cifs), is Microsoft OneDrive for individuals or Teams for committees/departments/groups with on-going collaboration. To begin preparing the campus for this transition, CNS will host brown bags and work sessions throughout the spring semester. These sessions will demonstrate the use of Microsoftt OneDrive and the process for transitioning to OneDrive from other cloud storage solutions. If you have a laptop, we recommend that you bring it with you when you attend one of these sessions. The sessions will be held in Baker 314 on:
- Wednesday, February 15th from 11am - 12pm
- Tuesday, March 14th from 10am - 11am
- Thursday, April 6th from 2pm - 3pm
The timeline of sunsetting the Google ecosystem is as follows: January 2nd, 2024 Google Drive Jamboard Keep Google calendar Assignments Google chat and hangouts Classroom Tasks. Other Google Services On January 2nd, 2024, CNS will ensure that non-OneDrive online storage synchronizing applications, such as those used with DropBox, Google Drive, iCloud, Box and other such cloud storage services, will no longer be installed on ESF owned computers. These services will only be accessible through those services websites. CNS encourages all users to migrate their work data from other platforms to Microsoft’s OneDrive or Teams before this time.
Additional information and resources can be found on https://it.esf.edu/Google-Sunset
NIST 800-171 3.13 control the flow of sensitive data in accordance with approved authorizations
NIST 800-171 3.1.19 Encrypt CUI on mobile devices and mobile computing platforms
NIST 800-171 3.5.3 use multi-factor authentication for local and network access for privileged accounts and for network access to non-privileged accounts
NIST 800-171 3.7.3 ensure equipment removed for off-site maintenance is sanitized of any sensitive data
NIST 800-171 3.8.1 Protect (i.e., physically control and securely store) information system media containing sensitive data, both paper and digital
NIST 800-171 3.8.6 Implement cryptographic mechanisms to protect the confidentiality of sensitive data stored on digital media during transport unless otherwise protected by alternative physical safeguards
NIST 800-171 3.13.1 Monitor, control and protect organizational communications (i.e., information transmitted or received by organizational information systems) at the external boundaries and key internal boundaries of the information systems
NIST 800-171 3.13.4 Prevent unauthorized and unintended information transfer via shared system resources