What is research security training and why is it required?

The National Science Foundation defines research security as, “Safeguarding the research enterprise against the misappropriation of research and development to the detriment of national or economic security, related violations of research integrity and foreign government interference.” Based on this definition, research security training helps covered individuals understand and manage risks related to:

• Protection of research data and intellectual property
• Undue foreign influence on university research
• Conflicts of interest
• International collaborations
• Controlled research (for example, export-controlled research, research involving controlled unclassified information, and Department of Defense research that requires operations security)

Beginning with the 2021 Presidential Memorandum on United States Government-Supported Research and Development National Security Policy, the U.S. government has directed higher education institutions that conduct government-sponsored research to take specific, proactive steps to protect sensitive research data and intellectual property, and to improve security controls. One of the steps research institutions are required to take is ensuring all individuals covered under the research security program complete research security training each year.

 

Who is required to take research security training?

At USC, we consider the personnel who meet one or more of the following criteria to be "covered individuals" who are required to complete research security training each year:

• University personnel, meaning faculty, staff, students, postdoctoral scholars or university affiliate researchers serving as principal investigator, co-principal investigator or key personnel on a federally funded research project (including subawards).
• University personnel designated as covered individuals by a federal research agency.
• University personnel supporting federal contracts/awards with access to regulated data (controlled unclassified information, HIPAA, genomic, etc.).
• University personnel involved in export-controlled projects. Most USC research is not subject to export control regulations, which apply to research on specific technologies that could be used for military purposes and items listed on the United States munitions list.
• University personnel working on a federal agency contract/award requiring Operations Security (OPSEC) training.

 

How do I complete my required research security training?

The Carolina Grants and Innovation Hub offers a full suite of research security training on demand through their Research Training and Education Services website. Visit the CGI Hub Research Security Training page to access:

• Research Security Training: Required each year for all covered individuals, including both initial training and an advanced refresher course covered individuals may take after completing initial training.
• Export Control Compliance Training: Required annually for covered individuals who are involved in export-controlled research (most USC research is not subject to export controls).
• Insider Threat Awareness Training: Required each year for covered individuals working on select Department of Defense contracts.
• Controlled Unclassified Information Training: Required annually for covered individuals with access to controlled unclassified information, including data covered by HIPAA, genomic data, and other information that is defined federally as sensitive, but that does not meet the criteria for classification.
• Operations Security (OPSEC) Training: Required each year for covered individuals working on Department of Defense projects that list OPSEC as a training requirement.

Once you have completed any research security training module, be sure to confirm completion by downloading your certificate of completion and submitting it to Research Training and Education Services through the form available on the CGI Hub Research Security Training page.