Information Security Training

Impacted Audiences

Data User

Everyone in the WashU community occupies the role of Data User.

Departments, Schools, and Units

Departments, Schools, and Units refers to organizational aggregations of Data Users.

Requirements

  • Basic training for individuals prior to accessing any Protected Information.
  • Targeted training for users, departments, and schools that need to meet specific information protection and regulatory requirements.
  • Role-based training for those with access to Protected Information, those with security roles and responsibilities, and as required by regulation.
  • Regulatory-specific training pertaining to specific industry regulations such as PCI, FERPA, HIPAA, NRC, etc.

Policies, Standards, and Guidelines

Standard 200.02 Information Security Awareness, Behavior, and Culture

Standard 200.02 describes the cybersecurity awareness training program at WashU.

Resources

OIS Training

HIPAA Privacy Office Training

CUI Training and Resources