All-Employee Information Security Awareness

The University of Arizona fosters an information security culture and is committed to protecting the confidentiality, integrity and availability of its information systems and resources. The Information Security Awareness Training policy is a state of Arizona requirement and educates members of the University community about their responsibilities to keep our institution safe from ever-evolving cybersecurity threats.

According to University policy, all faculty, staff, student workers, graduate assistants and associates, and designated campus colleagues (DCCs) with access to University Information Resources are required to complete Information Security Awareness Training within the first month of employment or engagement with the University and renew it annually in EDGE Learning.

Yes, most DCCs are required to complete Information Security Awareness Training and receive notifications from HR during their onboarding process and from EDGE Learning. There are a few categories of DCCs without NetIDs or University email accounts (e.g., Intermittent/Occasional Volunteers and Inter-Department) that are not required to complete the training.

The virtual training is available in EDGE Learning. You will receive a notification from EDGE Learning sent to your University email address prior to your training due date as part of your onboarding process and for annual renewal. Notifications are sent 30 days, 15 days, and 7 days prior to the due date.

Go to arizona.sabacloud.com and you will then be prompted to log in with your UA Net ID. For more detailed instructions on logging into EDGE Learning, please review our Log into EDGE section. 

For help accessing EDGE Learning or any other technical support related questions contact the at 24/7 IT Support Center at 520-626-8324.

For more information about EDGE Learning, go to the FAQ page.

The initial training takes about 34 minutes to complete and the annual renewal training takes five minutes to complete. 

You can verify if you have successfully completed the initial or annual renewal by logging in to your EDGE Learning Plan. You will find this information in the Learning and Certifications section. For more information, go to the EDGE Learning View Completed Learning page. 

New hires must complete Information Security Awareness Training within the first month of employment or engagement with the University and renew it annually in EDGE Learning. EDGE Learning sends the first notification 30 days before initial or annual renewal training certification expires. EDGE Learning sends additional reminders at 15 days and 7 days prior to the due date.

Effective May 17, NetID and access to University systems is disabled for full-time faculty and staff members who have not successfully completed their initial 34-minute Information Security Awareness training in EDGE Learning. Moving forward, this compliance measure will apply to all new full-time employees, who must complete the training within 30 days of joining the University.

Effective July 26, the new compliance measure will expand to include part-time employees. This measure will also be implemented for student workers,  graduate assistants and associates and designated campus colleagues (DCCs) later in summer Summer 2023. Specific implementation dates and information will be communicated when available.

After March 31, 2023, the compliance measure will apply to the initial training and annual renewal certification for full-time employees moving forward.

The new compliance measure will be implemented for part-time faculty, staff members, student workers, and graduate assistants and associates later this spring and for Designated Campus Colleagues (DCCs) this summer. Specific implementation dates and information will be communicated when available.

Completing Information Security Awareness Training before the due date is highly encouraged and will not be impact your NetID or access to university systems.

Yes. However, compliance will be implemented in phases for part-time employees, student workers, graduate assistants and associates later this spring and for DCCs this summer. Specific implementation dates will be communicated when available.  

Note: When the new measure is implemented for student workers and graduate assistants/associates, teaching and learning applications will remain available such as D2L, UAccess Student, CatCash, and Handshake, etc. in order to complete University academic courses and programs.   

If you cannot complete the initial or annual renewal training by the due date, your supervisor or sponsor will need to submit an extension request on your behalf via email to the Information Security Office at security@arizona.edu. 

It may take up to 60 minutes for the NetID to be re-activated after the Information Security Awareness Training is completed in EDGE Learning. 

If your NetID is still disabled 60 minutes after you complete the Information Security Awareness Training in EDGE Learning, please contact the 24/7 IT Support Center at 520-626-8324. 

Supervisors can check upcoming and overdue trainings for direct reports in EDGE Learning. Learn how to access Manager Dashboards. Supervisors are also copied on EDGE Learning overdue notification emails sent to their direct reports.

We ask for your support in achieving compliance by reinforcing this important training in conversations with your team, and ensuring your employees have the time and resources needed to complete the training.

To support training compliance, supervisors can:

• Monitor email notifications of overdue trainings
• Supervisors can use the Manager Dashboard in EDGE Learning to view training completion status for their direct reports.
• Training completion reports for entire units and departments are available to those with specific provisioning access in UAccess Analytics.