Cybersecurity
NIST Special Publication 800-171 outlines cybersecurity requirements for organizations that handle Controlled Unclassified Information (CUI) on non-federal information systems. Researchers working with federally funded projects, defense-related research, or sensitive government information may be required to follow these security controls to protect data confidentiality and maintain compliance with sponsor requirements. Controlled Unclassified Information (CUI) is defined as information that requires safeguarding or dissemination controls pursuant to and consistent with applicable law, regulations, and government-wide policies but is not classified. SDSU’s CUI Policy is outlined in the Senate Policy File section 2.0. Before applying for a grant or project which may require handling or processing CUI, it’s important to understand what increased cybersecurity control may be required. In addition, time will be needed to complete an assessment which will add time to the submission process. Digital Identity, Traceability, and Security Compliance
Controlled Research Information & Cybersecurity
