UCSF IT Zoom Securing Tips

There are reports both internally at UCSF and in the media of increased attempts to interrupt Zoom meetings for nefarious purposes.  Below are recommendations to increase the privacy of your Zoom meetings.  Also, UCSF IT is in direct contact with Zoom regarding reported privacy and security issues so we have solid facts and can take informed action. We are deploying the latest software updates and reviewing our enterprise Zoom settings to ensure we continue to provide a HIPAA compliant service that is highly usable. 
UCSF IT recommends that you safeguard the privacy of your meetings. Get acquainted with Zoom’s options so you can choose the appropriate configuration for your meetings. For sensitive meetings, consider applying all of the following recommendations.
  • Require participants to enter a password to enter the meeting.
  • Avoid using your Personal Meeting ID (PMI) to host events. Your PMI is essentially one continuous meeting and people can pop in and out all the time. Learn about meeting IDs and how to generate a random meeting ID by using Zoom’s “schedule” feature;
    • Note: clinicians using Zoom for patient care may use their PMI and should already have a waiting room enabled to prevent unwanted guests.  Go here for more information, and training on conducting Telehealth visits with patients.
  • Don’t publish a public link to your event on the web or social media.
  • You can find other suggested controls for securing your meetings here.




·       Information on Zoom and other tools to help facilitate a better remote work experience can be found at https://it.ucsf.edu/how_do/remote-work-resources