合规与道德
合规与道德
培训代表USM的合规计划的核心组成部分,通过提供 个人理解法律所必需的信息. Moreover, training promotes an organizational culture that fosters a commitment to compliance with the applicable 法律. 在每个子菜单中,您可以找到有关我们培训计划的信息.
iTech将监督资讯安全提供的额外合规课程的推出. For questions about cybersecurity training, 电子邮件 infosecFREEMississippi.
GET INCLUSIVE COMPLIANCE COURSE SYSTEM
If any law (either Federal or State) or if an 机构al policy needs to be communicated, 九游会国际可能会选择使用在线系统进行教育 整个九游会国际社区或社区内的任何团体. 很多 联邦法律影响大学必须如何处理某些事项和指示 有什么信息需要分发给整个九游会国际社区.
根据1964年《九游会国际》第四章的规定.S.C. § 2000c) which prohibits public school districts and colleges from discriminating against students on the basis of sex, among other bases.
1972年教育修正案第九条(标题IX), 20 U.S.C. §§1681及以下., and its implementing regulations, 34 C.F.R. Part 106, prohibit discrimination on the 教育项目或活动的性别基础 金融援助.
根据《九游国际棋牌》(见 教育部一般行政法规(EDGAR)第86部分.其中之一 Drug-Free Schools and Campuses Regulations requiring Institutions of Higher Education 谁正在接受联邦基金或财政援助来发展和实施一个 防止非法拥有、使用或分发非法毒品的程序 and alcohol by students and employees.
Each of the 法律 below requires cybersecurity training:
Gramm-Leach Bliley Act (GLBA) 适用于作为金融机构接受付款和支付的大学
因此,需要实施保障措施来保护消费者信息. 的
法案要求为人员提供最新的安全意识培训
necessary to reflect risks identified by a risk assessment.
Health Insurance Portability and Accountability Act (HIPAA)
的 Act applies to organizations creating, receiving, storing and transmitting "Protected
健康信息). 组织需要实现安全意识
and training program for all members of the workforce (including management) and must
do so on an ongoing basis.
Payment Care Industry Data Security Standard (PCI DSS)
As an organization accepting credit cards, the University must comply with the requirements
including the requirement to mandate cybersecurity awareness training that makes all
了解持卡人数据安全政策和程序的人员.
FISMA, FedRAMP, DFARS and CMMC
Any organization supplying goods or services to a federal agency is required to implement
a cybersecurity awareness training program.
的 General Data Protection Regulation (GDPR)
适用于在欧洲经济联盟存储或传输的数据. 下
Article 39 of the GDPR, the Data Protection Officer is tasked with "awareness raising
and training of staff involved in the processing operations." Article 43 of GDPR also
quires data protection training is required for those with permanent or regular access
个人资料.
SECTION 25-53-201, MISSISSIPPI CODE OF 1972-establishes an Enterprise Security Program for coordinating oversight of cybersecurity 跨州机构. 国家机构主任或机构负责人需要发展 a security program a component of which requires training as part of an overall cybersecurity 程序,这是旨在避免潜在问题的内聚程序的最佳实践 threats through cybersecurity awareness.
问题: For questions, 电子邮件 infosec@超声电机.edu.
虐童意识
Pursuant to USM's Minors 九游会国际政策, this training is required of each Authorized
Adult/Program Staff member who will be participating in a program covered by the Minors
九游会国际政策. 除了完成“获得包容性”课程外,还需要获得授权
Adult/Program Staff members must also read the Minors 九游会国际政策; and they must view the USM Minors on Campus course- http://usm-office-of-compliance-and-ethics.screencasthost.com/watch/c3h10YVYS5B and take the quiz accessible at http://forms.office.com/r/da7jqUAayL. 电子邮件 complianceFREEMississippi 提问或获取“Get Inclusive”课程的链接.
Financial Conflict of Interest
If your grant funder requires you to obtain 机构 specific FCOI training, please
电子邮件撒母耳.bruton@超声电机.edu. Remember, all full-time faculty members must complete
their FCOI披露 annually starting each September 1st. Use the following link
to access the FCOI披露: http://apps.90bc.net/research/fcoi/
如果任何内容不能使用辅助技术访问,请发送电子邮件 complianceFREEMississippi.
Should you have any questions or concerns, please 电子邮件 trainingFREEMississippi.
COURSE COMPLETION FREQUENCY:
从2021年开始,课程将每两年完成一次 每两年一次.