and subsequent from the Office of Science and Technology Policy requires research organizations, including ¹ú²úÔ´´, to implement basic cybersecurity standards. VUIT and ¹ú²úÔ´´ Cybersecurity are actively working on meeting these requirements. Please direct any questions to the Office of Cybersecurity by emailing cybersecurity@vanderbilt.edu.
Research contracts may also have additional cybersecurity requirements outside of the requirements found in NSPM-33. For example,  contains requirements related to protecting Controlled Unclassified Information (CUI).  allows the federal government to access contractor systems to make sure they are meeting required standards in NIST 800-171. More recently, an interim  prohibits the use of TikTok or other ByteDance applications on information technology used in the performance of a federal contract (see ¹ú²úÔ´´Â guidance on this regulation). If you have any questions about how these requirements apply to your current or pending research contracts, please contact your SPA Contracts Officer.
Best Practices
- °ä´Ç³¾±è±ô±ð³Ù±ðÌýcybersecurity training (currently required annually for all staff)
- Work with the Office of Cybersecurity to:
- a security incident
- Report any phishing attempts
- Follow tips and advice