Research Security Training
Who is required to complete research security training?
Research security training must be completed by
- All faculty involved in externally and internally funded research activities, and
- Any non-faculty that meet the definition of “covered individual” (42 USC § 19237(1)).
Research security training is highly recommended for
- All faculty, staff, students, and others that are involved in any international engagements.
How is research security training completed?
Collaborative Institutional Training Institute (CITI)
- Research security training is completed in CITI*
- Important: Completion in CITI will create an institutional record of the completed training.
*CITI is available to all SBU faculty, staff and students - Use the Log In Through My Organization option and use your NetID and password. Directions: Select "Add a Course", then "I want to complete the Research Security Course at this time", then select the appropriate training option, select "Next".
Which research security course must be completed?
baseline training Requirements
- At a minimum all individuals required to complete research security training must complete either the Research Security Condensed Course in CITI (approximately one-hour and is a condensed version of the National Science Foundation's (NSF) four research security training modules) or the Research Security Training Course (the four NSF modules) in CITI.
Federally Funded Research/Proposals
- There may be addtional requirements for researchers with federally sponsored researchers, see section below, and may be required in the future to take all four NSF modules (see chart below).
- Some federal sponsors may require additional training as part of a risk mitigation plan on specific research projects.
Special Note - Department of Energy (DOE)
- Researchers that have submitted proposals to DOE or hold DOE awards will be required to complete the four NSF modules per DOE requirements.
Specific research security training requirements for federally sponsored researchers and other "covered individuals"
Federal sponsors continue to implement research security training requirements.
Reminder - In addition to the university requirement for research security training, federally funded researchers must complete the level of research security training required by their sponsors.
| Agency | Deadline | Details |
|---|---|---|
| Department of Defense (DOD) | TBD | Training requirement has not been officially released by DOD. Some proposals and/or awards may require research security training. Read all proposal guidelines and awards carefully for specific training requirements |
| Department of Energy (DOE) | May 1, 2025 |
DOE guidance indicates that training must comply with the CHIPS and Sciences Act. The Research Security Training (condensed) version in CITI will satisfy this requirement. |
| National Aeronautics and Space Administration (NASA) | TBD | Training requirement has not been officially released by NASA. Some proposals and/or awards may require research security training. Read all proposal guidelines and awards carefully for specific training requirements |
| National Science Foundation (NSF) | October 2025 | Senior/key personnel listed on the application for a research and development award are required to take the training. |
| National Institutes of Health (NIH) | October 2025 | Senior/key personnel listed on the application for a research and development award are required to take the training. |
Additional Research Security Awareness Trainings in Collaborative Institutional Training Institute (CITI)
In addition to the research security training referenced above. CITI has created videos based on research security topics.
Modules: 1. Introduction to Research Security, 2. Risk Mitigation and Research Security, 3. Cybersecurity and Research Security, 4. International Collaborations, 5. International Travel, 6. Foreign Interference, 7. Federal Funding & Foreign Gifts and Contracts, and 8. Disclosures and Transparency.