New Online Computer Security Awareness Course

We are quick to start using the latest, greatest gadgetry and software, but forever seem to play a game of catch-up trying to cover all the security concerns. It's time to start changing that.

A convenient way to begin changing attitudes is at hand with a new mandatory computer security awareness course. All users of NIH computer resources must take the course prior to March 30, 2003. Before you heave a big sigh, there are lots of good reasons why this requirement is in both NIH's and your best interest. Besides being required by law (Government Information Security Reform Act, among others), the NIH mission is highly dependent on secure IT resources. When NIH employees use outdated anti-virus software, unpatched and vulnerable systems, and poor or no password protection, their systems are vulnerable to the increasing number of Internet hacker attacks. Moreover portable devices (laptop computers, Blackberries, Palm Pilots and other personal digital assistants, and wireless technologies) are becoming indispensable, and many are without sufficient protection. This is an opportunity to learn how to protect your IT resources.

Where to Find the Online Course

The new online training is located on the Web—NIH users must submit log-in information for tracking purposes. The training course consists of seven modules and requires approximately 30-40 minutes to complete—depending on how many links you visit. It contains lots of useful information, is easy to navigate, and can be used as a resource. When you've completed the course, you'll have a better understanding of the NIH IT security program, your IT responsibilities and where to get assistance. More important, you will become aware of easily adoptable practices that help ensure a safe computing environment in the office, at home, and while traveling.

Remember, security is everyone's responsibility. Your security is affected by everyone who shares a network connection with your computer, everyone who can enter your office space, anyone who knows or can easily guess your password, and anything you leave behind unlocked (including what's in your trashcan). Take the course, change your perceptions and your habits.

If you have questions about the training, contact your IC's Information Systems Security Officer (ISSO). The ISSO contact list is located on the Web.