General information

NSPM-33 requires certification from institutions awarded in excess of $50M per year in total federal research funding that they have implemented a research security program that includes four elements:

  • Cybersecurity
  • Foreign Travel Security
  • Research Security Training
  • Export Control Training

The objective of this section is to “Provide clarity regarding research security program requirements, how research organizations will be expected to satisfy the requirement, and how agencies will contribute to program content development.”

Agencies should require that, as part of their research security program, research organizations designate a research security point of contact (POC) and provide publicly accessible means to contact that individual (such as through a website or social media).

ISU response

Export Control Training

The Export Compliance Training provides a thorough understanding of export compliance, with additional role-specific training for key personnel.  The trainings cover diverse topics such as biosafety international shipping procurement, collaborations, and U.S. sanctions.

Required Export Control Training

  • Online modules are available in CITI
    • Instructions to access here
  • In person or alternative virtual training available by request

Research Security Training

Research Security Training provides recipients with comprehensive insights into the potential hazards and challenges confronting the global research ecosystem. Furthermore, the training provides the necessary information and tools crucial to protect against these risks.

Required Research Security Training modules are available in Workday Learn:

  • Within Workday Learn, browse Learning Content for “Research Security”
  • Select the “Research Security Training” program. Four modules are included in the self-directed training:
    • What is Research Security?
    • The Importance of Disclosure
    • Manage and Mitigate Risk
    • The Importance of International Collaboration