Information security
You will find the most useful information security instructions on this page. For help with information security matters, you can contact Metropolia’s User Support (Helpdesk) by submitting a service request. You’ll find the Helpdesk’s contact information further down. At the bottom of the page, there are links to Metropolia’s Digital Security Starter course and the Mikro-Mikko AI service.
Metropolia's operations are guided by legislation issued by authorities, which defines how the availability, usability, and integrity of documents, information systems, and the data they contain must be ensured. These practices are continuously developed, monitored, and improved as needed. Development work is carried out in close cooperation with all units and departments of Metropolia.
- Create a Strong Password and Use Passphrases
Use a password that includes lowercase and uppercase letters, numbers, and special characters. Never share your password with anyone—if someone asks for it, they are likely a cybercriminal. Metropolia’s IT Services will never request your password. A passphrase (e.g., a memorable sentence) can help you remember your password more easily. The recommended password length is 8–15 characters. - Use Unique Passwords for Different Services
Do not use the same password for Metropolia's information services as you do for other digital services, such as social media, online stores, or personal email. Use password manager tools to securely manage and store your passwords. - Multi-Factor Authentication Adds an Extra Layer of Security
Multi-Factor Authentication (MFA) requires a second method of verification in addition to your username and password. Many digital service providers, such as social media platforms, online stores, and email services offer MFA to enhance your account security. - Report All Problems and Incidents to the Helpdesk
If you forget your password or accidentally click on a suspicious link, change your password immediately. Report any irregularities to Metropolia’s Helpdesk. - Be Aware of Social Engineering
Social engineering is a form of criminal activity where the attacker manipulates the victim into revealing sensitive information. The attacker may exploit the victim’s goodwill or lack of awareness. Always be cautious if someone asks you for information or actions that seem unusual. - Keep Your Devices and Applications Up to Date
Cybercriminals exploit outdated software and services that contain security vulnerabilities. Updates fix these issues and improve protection. Make sure your operating system, applications, and browser are always up to date to maintain maximum protection against cyberattacks.