Overview
Welcome to Information Security Awareness (ISA) for FY2008. IHS has developed the following modules
in accordance with National Institute of Standards and Technology (NIST) guidelines on information
security awareness and information security training. All IHS information system users must take annual
security awareness in order to fulfill Federal mandates and regulations. In addition, all new users must
successfully complete these modules within 24 hours of receiving access unless the user has read the
HHS Quick Guide to Information Security
in which case they will have 30 days to complete the training. Failure to adequately complete these
awareness modules will result in the loss of information systems access.
These modules fulfill an IHS user’s annual requirements for the following:
Information security awareness
General incident response training
Continuity of Operations Plan (COOP) awareness
Privacy Act training
HIPAA Privacy Rule training
Acknowledgement of acceptance of the IHS Rules of Behavior (RoB)