Information Security Training | Information Technology | University of Pittsburgh

Information Security Training

Pitt Information Technology has in place a robust array of security measures and centralized security controls to protect the University's network and its data. But we also need your help. Everyone affiliated with Pitt shares in the responsibility of protecting the University's computing environment. One of our goals is to provide you with the knowledge and tools needed to protect yourself–and the University–from cyberthreats.

We now have an exciting new addition to our portfolio of security awareness resources. All faculty, staff, and student workers have access to online training from the highly regarded SANS security training series. This training will help you to better understand and utilize security best practices, making you better prepared to protect both yourself and the University.


Security Essentials Training

The collection of videos in this module covers a broad range of security topics, including protecting your home network, passwords, phishing, malware, physical security, hacking, social networks, encryption, and more.  

FISMA Training

The Federal Information Security Management Act (FISMA) refers to U.S. legislation that defines a comprehensive framework to protect government information, operations, and assets. University faculty and staff who work with government data that may be regulated by FISMA can request a special course. This online training course reviews standards and best practices for safeguarding that data.

Phishing Awareness Training

More than 90% of data breaches start with a phishing attack. Phishing is effective because not all phishing can be stopped by email filters and antivirus, and it targets what is often the weakest point in any organization… the people. However, people who recognize these attacks can be the strongest point of defense against phishing. This module explains how a phishing attack works, how to recognize one, and how to respond if you are targeted by this type of scam.