and subsequent from the Office of Science and Technology Policy requires research organizations, including 91ºÚÁÏÍø, to implement basic cybersecurity standards. VUIT and 91ºÚÁÏÍø Cybersecurity are actively working on meeting these requirements. Please direct any questions to the Office of Cybersecurity by emailing cybersecurity@vanderbilt.edu.
Research contracts may also have additional cybersecurity requirements outside of the requirements found in NSPM-33. For example,  contains requirements related to protecting Controlled Unclassified Information (CUI).  allows the federal government to access contractor systems to make sure they are meeting required standards in NIST 800-171. More recently, an interim  prohibits the use of TikTok or other ByteDance applications on information technology used in the performance of a federal contract (see 91ºÚÁÏÍø guidance on this regulation). If you have any questions about how these requirements apply to your current or pending research contracts, please contact your SPA Contracts Officer.
Best Practices
- °ä´Ç³¾±è±ô±ð³Ù±ðÌýcybersecurity training (currently required annually for all staff)
- Work with the Office of Cybersecurity to:
- a security incident
- Report any phishing attempts
- Follow tips and advice