The document presents a comprehensive overview of effective practices for implementing the research security program requirements outlined under National Security Presidential Memorandum 33 (NSPM-33). Moderated by Kris West from COGR and featuring institutional leaders from Penn State, Washington State University, University of Pennsylvania, and University of Pittsburgh, the discussion covers key domains required by NSPM-33: foreign travel security, cybersecurity, research security training, export controls, and research security governance. For each area, the agenda details practical steps institutions should take, exemplifies current institutional practices through poll questions, and summarizes common challenges and solutions.
The foreign travel security section emphasizes the need for robust travel policies, including pre-registration, tracking, security briefings, and support for securing electronic devices, with varying readiness and approaches evident across institutions. Regarding cybersecurity, the focus is on satisfying new, basic safeguarding requirements and regularly training authorized users, with institutions at different stages of compliance largely depending on the centralization of IT operations. Research security training requirements are explored, including integration with existing ethical and responsible conduct curricula and the anticipated use of modular, possibly NSF-funded, training. Export controls training is addressed as appropriate to the research and personnel involved, typically targeting those engaged with non-fundamental or export-controlled research. The governance section underscores the necessity for clear organizational structures, defined points of contact, and involvement from multiple units in developing, implementing, and overseeing security programs. Institutions exhibit a variety of governance models and preparedness levels, indicating that while there is progress and a strong foundation in many areas, significant adaptation and ongoing development will continue as final federal requirements and best practices evolve.
