CHIEF FINANCIAL OFFICER
October 12, 2015
ALL ACADEMICS, STAFF AND STUDENTS AT UC SAN DIEGO
As part of the University's efforts to address the increasing threats to the security of information systems and data, a comprehensive security awareness training program is being rolled out for all University of California (UC) Faculty, Staff, and Student Employees. Each member of the University community has a responsibility to safeguard the information assets entrusted to each individual. This training program will better prepare all employees to fulfill this responsibility and to strengthen the defenses against future attacks. Studies have shown that a substantial number of cyber-attacks involve the unintended actions of users of information systems, and this risk can be significantly lowered through an effective security awareness training program.
To this end, effective in October 2015, all University employees on active payroll status, regardless of previous training taken, will be required to complete the Cyber Security Awareness Training. The training must be completed by January 31, 2016 or within six weeks for any subsequent new hires, and will be required annually.
This training will be video-based, and delivered online through the UC Learning Center (https://uclearning.ucsd.edu) once the UC Office of the President has released the training to the UC campuses. Each module will focus on a specific security topic and conclude with three questions to test comprehension. The overall training should take approximately 50 minutes to complete. All UC San Diego employees who are on active status in the Payroll Personnel System will receive an e-mail communication about the training before the end of October.
Protecting data and information systems is a shared responsibility of each employee. I am confident that through collaborative efforts, a strong culture of defense against cyber-risk will be developed.
For more information on UC's information security resources, visit http://security.ucop.edu
Questions about the requirements of the security awareness training program may be submitted via e-mail to email@example.com.