Research Security

Our mission is to protect the integrity and openness of San Diego State University’s research enterprise by providing researchers with the guidance and resources needed to navigate the evolving landscape of research security. This site serves as a central resource for faculty, staff, and students, helping them understand and address risks related to foreign influence, export controls, and data security. Our goal is to ensure that groundbreaking research can be conducted responsibly and securely. We are dedicated to fostering a culture of compliance and awareness, safeguarding intellectual property and academic freedom, and supporting global collaborations that advance knowledge.

What is Research Security?

Research Security is defined as safeguarding the research enterprise against the misappropriation of research and development that could harm national or economic security. It also addresses violations of research integrity and foreign government interference. Research Security is required under several federal policies and statutes, including NSPM-33 (2021) and the CHIPS and Science Act (2022). These and other existing regulations introduce compliance and security frameworks, including cybersecurity requirements, that may impact your research project and funding.

Multiple university offices—including the Division of Research and Innovation (DRI), the Information Technology Division (IT), the SDSU Research Foundation (SDSURF), International Affairs, and others—will collaborate on Research Security. This effort partners with researchers to promote innovation while protecting national security and intellectual property.

Additional Resources

SDSU Controlled Unclassified Information Policy

Controlled Unclassified Information (CUI) is sensitive information created or handled under federal government requirements that is not classified but still requires protection. Researchers who work with CUI must follow specific rules for storing, accessing, transmitting, sharing, and disposing of the information to prevent unauthorized disclosure.

NIST SP 800-171 Compliance Requirements

Applicability: All users of NIH controlled-access data under the GDS Policy. 

This Knowledge Base article provides guidance for determining whether data is subject to these requirements and outlines how San Diego State University will implement and support compliance with the NIH policy.

Takeaways from JASON Fundamental Research Security Report

The 2019 JASON report, commissioned by the National Science Foundation (NSF), examined how the United States can address research security concerns while preserving the openness that drives scientific discovery. The JASON Fundamental Research Security Report concludes that research security is best achieved through transparency, disclosure, and research integrity while preserving the openness and international collaboration that are essential to scientific progress.

Suspicious Activity Reporting (SD-LECC)

The San Diego Law Enforcement Coordination Center (LECC) is San Diego's Regional Threat Assessment Center. LECC operates 24/7, providing intelligence, investigative and technical support to agencies critical to homeland security efforts in San Diego.

FBI Critical Infrastructure Sectors

There are 16 critical infrastructure sectors whose assets, systems, and networks, whether physical or virtual, are considered so vital to the United States that their incapacitation or destruction would have a debilitating effect on security, national economic security, national public health or safety, or any combination thereof.

Have Questions?

We are here to help!

SDSU Division of Research & Innovation
5500 Campanile Drive
San Diego, CA 92182-1950

We’re here to support your research security needs.

If you have questions about research security requirements—such as disclosure obligations, foreign collaborations, or compliance guidelines—our team is here to help.