Please read the below message on required security training on social engineering from Michael Tran Duff, University Chief Information Security and Data Privacy Officer:

Dear Colleague, 

In response to a rise in cyber-attacks targeting higher education, the University is developing new trainings for affiliates handling sensitive data.  

As someone who regularly works with sensitive data, you are required to take these new trainings. The first of these trainings is a 13-minute interactive module on social engineering. Key topics covered in the training include:  

  • AI-enabled social engineering attacks, including “deep fakes”
  • Personalized attacks based on information available online
  • Situational awareness and how to protect information online 

Additional trainings will be developed and distributed as timely threats emerge. These trainings are in addition to, and not a replacement for, the existing University-wide Annual Security Awareness training. 

What to expect 

  • On April 14, you will receive an auto-generated email from the Harvard Training Portal communicating that the training is available.
  • Please complete the training within 4 weeks of receiving this email. 

Where to get help 

If you have questions or need help, please contact the HUIT Service Desk

Thank you for helping to keep Harvard’s systems and data safe and secure. 

Sincerely, 

Michael Tran Duff 

University Chief Information Security and Data Privacy Officer