University of Wisconsin–Madison

Smart Access January 2026 update

Smart Access work is active and continuing to advance and focus on advancing Zero Trust with what we already have. Current efforts focus on building a clearer understanding of how devices connect to university systems today, where compliance gaps exist, and how those gaps can be addressed in practical, sustainable ways. Rather than introducing new requirements, this phase emphasizes learning from real data, testing improvements with IT partners, and using evidence to guide next steps. This approach reflects the Smart Access service principle Adapt with Purpose – moving deliberately, informed by facts, and aligned to the university’s mission.

Current work & pilots

VPN auditing & evaluation

  • Audit mode enabled on WiscVPN services to evaluate device compliance signals without enforcement.
  • CALS-Genetics VPN is serving as an early partner environment for deeper testing and evaluation.
  • Auditing focuses on understanding current device posture and identifying patterns and gaps that inform next steps.

Device compliance visibility

  • The Smart Access team is developing an Elastic dashboard that aggregates device compliance data across WiscVPN, the DoIT VPN, and the CALS-Genetics VPN to monitor compliance levels and trends.
  • Initial dashboard design, validation, and use are being tested with the DoIT and Genetics VPNs to ensure the data, views, and workflows are accurate and useful before broader operational use.
  • This work supports improved visibility and analytics aligned to the CISA Zero Trust Maturity Model (ZTMM).

User communication & notifications

  • Smart Access is working with DoIT Communications to draft and test VPN notification language that informs users of device compliance issues.
  • Notifications will be piloted on the DoIT and Genetics VPN to evaluate clarity, effectiveness, and user experience before broader consideration.

Automation to support compliance

  • Work is underway to explore automation approaches that help maintain operating system compliance levels.
  • The goal is to reduce manual effort and improve consistency while supporting existing policy expectations.

Log management infrastructure analysis

Smart Access is also advancing foundational work related to log management and visibility across the university. A charter has been completed for a Log Management Infrastructure Analysis, which will evaluate the university’s current on-premises log management architecture and explore cloud-based and alternative service models that better support scalability, resilience, and long-term sustainability. The analysis is expected to result in a report by June 2026 Key outcomes of the analysis include:
  • Assessing the current log management environment and operational burden.
  • Evaluating alternative models that could improve reliability and supportability over time
  • Identifying paths to modernize log management in a way that supports future expansion and growth
This effort applies Zero Trust principles by strengthening the university’s ability to see what’s happening across systems and by laying the groundwork for more consistent and automated responses. This effort supports the Smart Access approach of building shared visibility first, then using that foundation to enable better detection, response, and automation over time.

Coordination with the Data Classification Initiative

A member of the Smart Access team is actively participating in the Data Classification Initiative, specifically supporting the Schema Augmentation and Systems Integration working group.

What the working group aims to accomplish

The working group is focused on establishing consistent, machine-readable data classification and tagging standards that can be used across systems. Its goals include:
  • Defining a shared classification and tagging taxonomy aligned to SYS-1031.
  • Identifying how classification metadata should be represented and transmitted across systems.
  • Recommending practical ways to embed classification into existing tools and workflows.
  • Identifying near-term pilot opportunities where classification meaningfully reduces risk.
This work is centered on standards, guidance, and enablement – not enforcement or new tooling.

What Smart Access collaboration enables

Smart Access participation ensures that data classification outputs can support future Zero Trust capabilities. Through this collaboration, Smart Access is:
  • Ensuring classification standards are usable by security and access controls
  • Identifying where classification signals can inform access decisions, visibility, and automation
  • Translating working group outcomes into potential Smart Access backlog items that extend beyond the initiative’s scope
In this model, the Data Classification Initiative defines institutional standards, while Smart Access focuses on how those standards can be used to reduce risk over time. This division of responsibilities supports We’re All in This Together by avoiding duplication and maintaining clear ownership.

What’s next

  • Continue VPN audit analysis with CALS-Genetics
  • Refine dashboards and notification approaches based on testing
  • Identify next automation opportunities that improve compliance sustainability
  • Share additional updates as pilots mature

Stay connected

Sign up to get short (1-2 minute) Smart Access updates monthly via the website. Questions or feedback? Reach out to the Smart Access team.