Awareness Training

Updated 2018 Cybersecurity Awareness Training

sans_training_shield

To end National Cybersecurity Awareness Month (NCSAM) and maintain our commitment to educate the University community on cybersecurity topics, the Division of Information Technology assigned the annual Cybersecurity Awareness Training to all employees on October 31, 2018.

Education and awareness is key to being able to defend against cyber attacks. As members of our FIU community, it is our responsibility to safeguard all information resources. The goal of the training is to help our University employees identify and prevent the loss of sensitive data and protect existing resources.

The annual training is part of our awareness efforts and requirements for regulations and compliance that the University must adhere to. The Division of Information Technology has updated the annual online Cybersecurity Awareness Training with enhanced content, current trends and the addition of compliance modules.

Requirements

All employees are required to take the training within 6 months of assignment.

Please note that the training does not have to be completed in one sitting. You can resume the training in multiple attempts without affecting the completion status of modules.

Begin your training to become cyber aware at securityawareness.fiu.edu. For more information or troubleshooting issues, visit the Knowledge Base article.

Version 1 of Cybersecurity Awareness Training

The Cybersecurity Awareness Training is divided into 2 sections. The first section includes modules related to general cybersecurity topics. The second section includes modules that focus on compliance. The topics or content of these modules may not directly apply to your job role but are included in the training due to the nature of our business, being a University and the likelihood of persons coming into contact with such information - even if not part of a department that process those types of data.

As part of our awareness efforts and requirements for regulations and compliance, the short general knowledge material/modules are included for all employees. More in depth training on compliance topics, such as FERPA, HIPAA, PCI, etc. are assigned to those whose job roles or departments are related to handling such sensitive data.

For your convenience, the training is offered in individualized modules per topic which allows you to complete the training at your own pace and as time permits. There are 26 individual modules with 2 being informational only. The individual modules can be completed in any order. The combined length of all 26 individual videos/modules is 1 hour and 15 minutes of content.

Version 2 of Cybersecurity Awareness Training

cybersecurity_modules

The training was updated to accommodate the feedback received and is offered to all users who have not started the original training or new users being assigned training. For your convenience, you have the option to complete a pretest for the Cybersecurity Core Knowledge modules. Alternatively, you can watch the video for each individual module and complete the corresponding assessment for each module.

You are only given the option to complete the pretest once. The pretest includes 30 questions (3 questions per topic) which will assess your knowledge of core Cybersecurity topics. All 3 questions per topic must be answered correctly to complete that topic/module. If all 3 questions for any topic are not answered correctly, at the end of the pretest, you will be required to watch the video and complete the corresponding assessment successfully for the module to be marked as complete. This can be done at a later time if needed. There are 2 modules that are not included in the Cybersecurity Core Knowledge pretest. The “You are the Shield” (intro) and “Conclusion” modules must be viewed at the end of the pretest.

As part of your annual Cybersecurity Awareness Training, we have included the following topics: Cloud Services, Personally Identifiable Information (PII) and Family Education Rights and Privacy Act (FERPA).

Recommended Training

Furthermore, we have provided additional topics which we recommend in order to further expand your knowledge on other pertinent cybersecurity issues and compliance requirements. The Recommended Training section offers training activities that are not required to complete nor have a due date. It is encouraged that you review the videos of interest at your leisure. With titles such as Working Remotely, International Travel, Encryption and HIPAA, the recommended training can offer security awareness and tips to apply to your life at work or home.