Office of Research Ethics
Search Close Search
Toggle Menu

Research Security Training

Fulfilling the Requirements of NSPM-33 and the CHIPS and Science Act

Research security training is required as part of the National Security Presidential Memorandum-33 (NSPM-33) from 2021 and the CHIPS (Creating Helpful Incentives to Produce Semiconductors) and Science Act of 2022. This page details:

  • Who needs to complete the training
  • How to access the available training options
  • Required training frequency
  • Specific federal agency implementation timelines

Who Needs to Complete Research Security Training

Covered individuals, as defined by each federal agency, must complete research security training prior to submitting proposals for federal awards. The definition of a Covered Individual given in the Terms and Conditions of the funding notice, award, amendment, etc. supersedes definitions that might be found elsewhere. Implementation timelines for this training requirement vary by federal funding agency; please see the Specific Federal Agency Implementation Timelines section on this page.

How to Access ISU’s Research Security Training Options

Iowa State offers two research security training options – both satisfy federal requirements. The training was developed collaboratively by Duke, Stanford, The University of Michigan, and The Ohio State University through a grant from the National Science Foundation (NSF) in tandem with the National Institutes of Health (NIH), the Department of Energy (DOE) and the Department of Defense (DoD).

 

Desktop computer with an illustrated lock overlay.

Option 1: Research Security Training – Extended
The original version of the training consists of four modules (What is Research Security; The Importance of Disclosure; Manage and Mitigate Risk; and The Importance of International Collaboration) and is expected to take approximately four hours (in total) to complete. This option offers a deeper coverage of the material and might be especially beneficial for new researchers.

Woman holding laptop and typing on it.

Option 2: Research Security Training – Condensed

To reduce the administrative burden and in response to feedback, a condensed, one-hour version was developed by the same institutions that developed the original, comprehensive option.

As a reminder, covered individuals must complete one of the training courses of their choosing; both options fulfill federal requirements.

Required Training Frequency

Training is valid for one year, per the CHIPS and Science Act. Approximately 30 days before your training expires, you will begin to receive an automated weekly e-mail reminder, which will continue for up to seven days after expiration. The reminders will contain links to the two training options; both options will extend your training for another year, regardless of which one you took before. If you are no longer listed on an active award that requires the training, you will be able to disregard the reminders.

Specific Federal Agency Implementation Timelines

Under the CHIPS and Science Act signed into law on August 9, 2022, federal agencies had 12 months to establish an annual research security training requirement. The implementation timelines given by federal funding agencies are listed below, and are subject to change.

DOE – Beginning on May 1, 2025, all DOE Notices of Funding Opportunity (NOFOs) will include a requirement for all covered individuals to complete research security training to submit a proposal. Covered individuals from recipients or subrecipients who are added to an existing DOE award that includes the research security training requirement must also complete the training.

NSF – The NSF’s requirement will become effective with the implementation of the 2025 NSF Proposal and Award Policies and Procedures Guide (PAPPG). The 2025 PAPPG is anticipated to take effect in October 2025. The NSF will require that all individuals designated as senior/key personnel on a proposal complete research security training. Individuals will certify in the Biographical Sketch and Current and Pending (Other) Support documents that they have completed training.

DOD, HHS (PHS/NIH/etc.), NASA, USDA – These agencies have not yet detailed how or when they plan to comply with the research security training requirement of the CHIPS and Science Act.
(Section last updated: April 4, 2025)