New Training: Understanding Information Security in Agreements

Protect your unit and the institution with contracts that align with University vendor and contract security governance. A new course offering is now available in EDGE Learning to help university employees understand how to manage information security responsibilities in contracts they negotiate on behalf of the University.

Developed by the Information Security Office (ISO), the 90-minute training, “Understanding Information Security in Agreements,” is comprised of three sections and provides guidance on how to make risk-informed decisions specific to contracts and agreements, with references to University information security governance resources. Training topics include:

• An introduction to the ISO's role with university contracting; the various risk ownership roles; and the benefits of having a security plan to manage a unit’s information security risks.
• A deep dive into understanding the recommended information security coverage that should exist within agreements.  
• Instructions to request a consultation with the ISO’s Governance, Risk and Compliance (ISO-GRC) team.  

The Information Security Office develops training resources and other tools as part of its mission to educate faculty, staff and students about university information security best practices.  A special thank you to the Contract Information System (CIS) Working Group and Financial Services Purchasing Contract Team for providing feedback to help inform the development of this training.