Mandatory All-Employee Security Awareness Program
All UArizona employees, student workers, and Designated Campus Colleagues (DCCs) with access to University Information Resources are required to complete annual security awareness training. To fulfill this requirement, the Information Security Office, with help from the campus community, has developed user-friendly online modules to ensure that all employees can easily participate in and complete the security awareness program. The program has been designed to not only inform employees of their responsibilities as members of the UA community, but to also assist them in securing their information at home.
Security Awareness Training Links
- Security Awareness Training in EDGE Learning
- Completion Instructions: Employees and Designated Campus Colleagues (DCCs) have already been enrolled in training. Please review the completion instructions.
- Information Security Awareness Training Policy
- For questions or concerns regarding whether or not you need to complete training, please contact the Information Security Office.
- For technical support, please contact the 24/7 IT Support Center.
Frequently Asked Questions (FAQs)
The University of Arizona fosters an information security culture and is committed to protecting the confidentiality, integrity and availability of its information systems and resources. The Information Security Awareness Training policy is a state of Arizona requirement and educates members of the University community about their responsibilities to keep our institution safe from ever-evolving cybersecurity threats.
According to University policy, all faculty, staff, student workers, graduate assistants and associates, and designated campus colleagues (DCCs) with access to University Information Resources are required to complete Information Security Awareness Training within the first month of employment or engagement with the University and renew it annually in EDGE Learning.
Yes, most DCCs are required to complete Information Security Awareness Training and receive notifications from HR during their onboarding process and from EDGE Learning. There are a few categories of DCCs without NetIDs or University email accounts (e.g., Intermittent/Occasional Volunteers and Inter-Department) that are not required to complete the training.
The virtual training is available in EDGE Learning. You will receive a notification from EDGE Learning sent to your University email address prior to your training due date as part of your onboarding process and for annual renewal. Notifications are sent 30 days, 15 days, and 7 days prior to the due date.
Go to arizona.sabacloud.com and you will then be prompted to log in with your UA Net ID. For more detailed instructions on logging into EDGE Learning, please review our Log into EDGE section.
For help accessing EDGE Learning or any other technical support related questions contact the at 24/7 IT Support Center at 520-626-8324.
The initial training takes about 34 minutes to complete and the annual renewal training takes five minutes to complete.
You can verify if you have successfully completed the initial or annual renewal by logging in to your EDGE Learning Plan. You will find this information in the Learning and Certifications section. For more information, go to the EDGE Learning View Completed Learning page.
New hires must complete Information Security Awareness Training within the first month of employment or engagement with the University and renew it annually in EDGE Learning. EDGE Learning sends the first notification 30 days before initial or annual renewal training certification expires. EDGE Learning sends additional reminders at 15 days and 7 days prior to the due date.
Beginning Friday, March 31, NetID and access to University systems will be disabled for full-time faculty and staff members who have not successfully completed their initial or annual renewal Information Security Awareness training in EDGE Learning after receiving a 30-day advance notice.
Full-time employees who do not complete the training prior to Friday, March 31, will be unable to log in to University systems that require a NetID (e.g., Outlook, D2L, Zoom, Teams, Box and UAccess). EDGE Learning will be the only University system available to them until they have completed the training.
The new compliance measure will be implemented for part-time faculty, staff members, student workers, and graduate assistants and associates later this spring and for designated campus colleagues (DCCs) this summer. Specific implementation dates and information will be communicated when available.
After March 31, 2023, the compliance measure will apply to the initial training and annual renewal certification for full-time employees moving forward.
The new compliance measure will be implemented for part-time faculty, staff members, student workers, and graduate assistants and associates later this spring and for Designated Campus Colleagues (DCCs) this summer. Specific implementation dates and information will be communicated when available.
Completing Information Security Awareness Training before the due date is highly encouraged will not be impact your NetID or access to university systems.
Yes, however, compliance will be implemented in phases for part-time employees, student workers, graduate assistants and associates later this spring and for DCCs this summer. Specific implementation dates will be communicated when available.
Note: When the new measure is implemented for student workers and graduate assistants/associates, teaching and learning applications will remain available such as D2L, UAccess Student, CatCash, and Handshake, etc. in order to complete University academic courses and programs.
If you cannot complete the initial or annual renewal training by the due date, your supervisor or sponsor will need to submit an extension request on your behalf via email to the Information Security Office at email@example.com.
It may take up to 60 minutes for the NetID to be re-activated after the Information Security Awareness Training is completed in EDGE Learning.
If your NetID is still disabled 60 minutes after you complete the Information Security Awareness Training in EDGE Learning, please contact the 24/7 IT Support Center at 520-626-8324.
Supervisors can check upcoming and overdue trainings for direct reports in EDGE Learning. Learn how to access Manager Dashboards. Supervisors are also copied on EDGE Learning overdue notification emails sent to their direct reports.
We ask for your support in achieving compliance by reinforcing this important training in conversations with your team, and ensuring your employees have the time and resources needed to complete the training.
To support training compliance, supervisors can:
- Monitor email notifications of overdue trainings
- Supervisors can use the Manager Dashboard in EDGE Learning to view training completion status for their direct reports.
- Training completion reports for entire units and departments are available to those with specific provisioning access in UAccess Analytics.
If you have any issues, comments or concerns please contact the 24/7 IT Support Center at 520-626-8324.