Information Security Training
UF's annual information security awareness training is an online course that provides essential cybersecurity knowledge to help employees protect themselves, their data, and the Integrated Risk Management process. The training is created by UFIT to specifically address UF's policies and IT environment, and is updated each year to include the latest information.
Modules include:
- Phishing awareness
- Social engineering through technology
- Understanding and securely using restricted data
- Workspace, mobile device, and security while traveling
- Using cloud & collaboration tools securely at UF
- Reporting data security incidents
The training is delivered online through the MyTraining system, and takes approximately 45 minutes to complete.
All employees of the University of Florida are required to take the information security awareness training. Students are offered an abbreviated training focused on phishing awareness.
A 2019 audit by the Florida Board of Governors recommended that the University of Florida enhance its existing information security awareness program by implementing a mandatory annual faculty and staff training. A State of Florida audit of the university in 2025 emphasized the need for the university to have full participation in the security training.
All faculty and staff must complete the training annually. It was first offered in the Fall 2020 semester, and expires one year after the previous completion. The MyTraining system will email reminders beginning 30 days before expiration.
New hires will receive an email from the MyTraining system with a link to the training, and the training must be completed within 30 days after the date of their hire.
Yes. Because emeritus faculty have access to university computer systems and data in order to teach classes and conduct research, they are exposed to the same information security threats as all other university employees.