Back to Top
Skip to Content
Home :: Policies :: Cyber Security Awareness Training Education

Cyber Security Awareness Training Education

Responsible Department
Information Technology
Effective Date
06/15/2017
  1. .

    Purpose

    The purpose of this policy is to establish the expectation of all employees as it relates to Cyber Security Training at the University of North Georgia (the “University”).

  2. .

    Definitions

    Cyber Security Awareness Training Education – training and education related to practices and techniques that enhance the protection afforded to University computer networks and data.

  3. .

    Statement

    1. In accordance with University and Board of Regents policy, each employee is required to participate annually in Cyber Security Awareness Training.

    2. Content shall align with the requirements published in the University System of Georgia Information Technology Handbook.

    3. Participation by all employees of the University is mandatory.

    4. University Information Security shall maintain records of successful completion, or be able to extract that information upon request.

    5. Scope – This policy outlines the standards for the minimum requirements for successful completion of the University System of Georgia mandate for annual user awareness training. In addition, this policy is binding and applies to all University employees, or affiliates located on but not limited to facilities at any campus of the University (hereinafter “Users”).

    6. Responsibilities:

      1. Information Security – Shall develop and maintain a user awareness training program.

      2. Human Resources – Shall support Information Security as it relates to the efforts to enforce the University System of Georgia directive that all employees complete annual Cyber Security Awareness Training Education.

      3. Departments, Units, and Individuals – Shall participate, as required, in the University’s Cyber Security Awareness Training Education.
  4. .

    Support Info

    1. Section 5.9.1 of the University System of Georgia Information Technology Handbook

    2. O.C.G.A. § 16-9-150 (2015)

    3. NIST SP 800-16 IT Security Training Requirements

    4. NIST SP 800-50 Building an IT Security Awareness and Training Program
  5. .

    Procedures

    Any related operating procedures must comply with and should reference this policy.

UNG follows Section 508 Standards and WCAG 2.0 for web accessibility. If you require the content on this web page in another format, please contact the ADA Coordinator.


Back to Top