Export Controls and CUI Training
Online Export Controls Training
Online export controls training is available through the CITI program and the Department of Defense. Training is required for personnel to participate in a controlled project, however anyone interested can take the training. See this CITI Quick Reference Guide for Export Controls Training to get started or see the DoD links below.
Required Courses by Role:
| Role | CITI Training | DoD Training |
|---|---|---|
| New personnel on a Technology Control Plan (TCP) or with potential exposure to export-controlled information/materials | Required prior to joining any TCP: Export Controls – Initial Training | Required before joining any TCP that involves CUI: Insider Threat Awareness Training; DoD CUI Training; DoD OPSEC Training; Online Data Security Training |
| Existing Personnel on a TCP | Required once every five years: Export Controls – Refresher | Required annually for those on a TCP that involves CUI: Insider Threat Awareness Training; DoD CUI Training; DoD OPSEC Training; Online Data Security Training |
| Personnel engaging with entities or persons from or who are traveling to countries/regions subject to U.S. Comprehensive Sanctions | May be required: Export Controls – OFAC Sanctions Training Only | |
| Purdue personnel responsible for research administration who may encounter export control regulations. (Examples: Department Heads, College leadership, SPS, Business Offices) | Recommended: Export Control for Research Administrators |
Insider Threat Awareness Training
This course provides a thorough understanding of how Insider Threat Awareness is an essential component of a comprehensive security program. With a theme of “if you see something, say something,” the course promotes the reporting of suspicious activities observed within the workplace. You can access the course at: Insider Threat Awareness
Once completed, please send the training certificate to rsec@purdue.edu. Include in your email the project for which the training was required.
DoD CUI (Controlled Unclassified Information) Training
Certain Department of Defense Contracts require Controlled Unclassified Information Training. You can take the training at the following link: https://securityawareness.dcsa.mil/cui/index.html
Once completed, please send the training certificate to rsec@purdue.edu. Include in your email the project for which the training was required.
DoD OPSEC Awareness Training
Certain Department of Defense Contracts require Operational Security (OPSEC) Training. You can take the training at the following link: OPSEC Awareness Training
Once completed, please send the training certificate to rsec@purdue.edu. Include in your email the project for which the training was required.
Online Data Security Training
In order to comply with federal cybersecurity requirements and best practices for safeguarding digitally-stored, controlled information, Purdue personnel on a TCP are required to complete annual data security training.
Data Security Quick Reference Card
In-Person Training
The Purdue Research Security and Export Controls team provides tailored training to interested departments, centers, or groups to give you and your office basic understanding of sanctions and export control regulations and safeguarding best practices. To schedule a training, please contact rsec@purdue.edu.