Skip to main content

Information Security Training and Awareness Program

Information Security Training and Awareness Program

The Information Security Training and Awareness Program provides educational offerings to assist university members with staying up to date with regulatory training requirements (i.e. PCI, GLBA, HIPAA, etc.), as well as includes helpful tips and information for staying safe online.

Managers/deans/supervisors/merchants should request training below to enroll faculty, staff, students, cashiers and appropriate guests into the provided training categories.

Payment Card Industry Data Security Standard (PCI-DSS) requires that all personnel who collect, handle, or process PCI data are required to take annual awareness training. This training is mandatory and must be completed on an annual basis.

Managers and merchants must submit a request for training to enroll individuals who process or have access to credit card data that is used for payments to the university.

How to enroll staff in PCI Training:
1. Complete the training request form. (NetID Login required.)
2. Review training instructions for submitting student rosters.
3. Provide login instructions to all identified enrollees once the training request has been approved.

For any questions, contact IT Risk, Policy, and Compliance.

Online training modules are available for employees who have access to or use covered data under the Gramm-Leach-Bliley Act (GLBA), including personally identifiable financial information. This training is mandatory and must be completed on an annual basis.

Managers/Deans/Supervisors must submit a request for training for all employees in their respective units, schools, or departments who process GLBA data.

How to enroll staff in GLBA Training:
1. Complete the training request form. (NetID Login required.)
2. Review training instructions for submitting student rosters.
3. Provide login instructions to all identified enrollees once the training request has been approved.

For any questions, contact IT Risk, Policy, and Compliance.

Managers/Deans/Supervisors must submit a request for training for any staff members requiring a supplemental review of HIPAA Security Rule concepts.

How to enroll staff in HIPAA Refresher Training (optional training):

  1. Complete the training request form. (NetID Login required.)
  2. Review training instructions for submitting student rosters.
  3. Provide login instructions to all identified enrollees once the training request has been approved.

For any questions, contact IT Risk, Policy, and Compliance.


Cyberthreat awareness

Reporting a suspected scam

Review actions Rutgers community members should take to report any suspected cyberthreats.

Covid-19 related cyberthreats

See common scams and cyberthreats that have been reported during the COVID-19 pandemic and some tips to avoid them.

Phish Bowl

Cyberthreats are everywhere. Learn how you can avoid phishing scams with these quick tips.

Training inquiries and support

For additional questions or assistance regarding training, please contact the information security trainer.