Research Security
UMass Chan values its relationships with scientists and institutions around the world. International collaborations and scholarly exchanges foster the free exchange of ideas, advance scientific discovery, and are essential to UMass Chan’s research mission.
In recent years, the U.S. government has increased its focus on protecting federally funded research from misappropriation and undue foreign influence. As a recipient of federal research funding, UMass Chan must comply with applicable federal requirements, including National Security Presidential Memorandum 33 (NSPM-33), the CHIPS and Science Act of 2022 (42 U.S.C. § 19232), and other related regulations. These requirements are designed to safeguard research integrity, protect intellectual capital, promote transparency in research activities, and ensure the responsible stewardship of U.S. taxpayer funds.
The information below describes how UMass Chan addresses the four primary components of NSPM-33.
CyberSecurity:
Information Security and Privacy training is required to be completed annually for all UMass Chan Medical School (UMass Chan) users who access UMass Chan resources or data. Interactive modules cover topics such as general security best practices, Protected Health Information, Data Destruction and Phishing.
UMass Chan maintains a comprehensive information security program designed to protect institutional systems, services, and data from unauthorized access, use, disclosure, alteration, damage, or loss. Researchers are expected to follow all applicable security, privacy, and data management requirements to ensure that research activities meet institutional, sponsor, and regulatory obligations.
In accordance with the CHIPS and Science Act of 2022 and NSPM-33 requirements, the National Institute of Standards and Technology (NIST) is developing guidance for institutional cybersecurity programs. Once final requirements are published, UMass Chan will certify that it has implemented a cybersecurity program consistent with applicable federal standards and requirements within one year.
Foreign Travel Security:
The University of Massachusetts Travel Policy provides an overview of UMass Chan’s compliance with NSPM-33 requirements to maintain an organizational record of international travel, including sponsored international travel, for organization business, teaching, conference attendance, and research purposes when security risks warrant travel reporting.
The Pre-travel Review and Approval Process for International Travel includes an export control review as well as additional planning for personal safety and cybersecurity, particularly when traveling to high-risk destinations.
Research Security Training:
Research security training, including basic and more detailed advanced courses, are available through the CITI Program. Training is required to be completed prior to proposal submission for all Covered Individuals. Please see additional information including instructions to access the training here: Research Security Training
Export Control Training:
Compliance with export control laws requires proper protection of controlled information, processes for reviewing foreign sponsors, collaborators and partnerships, and mandatory training for all personnel conducting restricted research.
Understanding these principles helps prevent the unauthorized disclosure of controlled information, technology, or technical expertise while ensuring that controlled items are appropriately procured, managed, and protected. Relevant training is provided to personnel conducting research subject to export control restrictions.
Contact us:
Contact us at any time by email researchcompliance@umassmed.edu