To protect the integrity of research and safeguard sensitive information, institutions are increasingly prioritizing research security. All personnel involved in research activities—whether faculty, staff, or students—are required to complete training that covers key areas such as data protection, export controls, conflict of interest disclosures, and cybersecurity. This training supports a culture of transparency, compliance, and ethical research practices.
Areas of Focus
The CHIPS and Science Act of 2022 requires research security training for individuals working on federal research projects. Starting May 1, 2025, the requirement is applied to “covered individuals” on research projects funded by federal agencies like the Department of Energy (DOE), National Science Foundation (NSF), and others.
Michigan Tech uses the training provided by the CITI program. This training aims to strengthen protections against potential security threats, such as foreign interference, and cybersecurity risks and provides information on risk mitigation, international collaborations, transparency, and disclosure requirements.
Export control laws and regulations affect a variety of activities, including many activities that take place physically within the U.S. Export Controls are a growing area of compliance for universities and research institutions and training is required when hosting visiting scholars, when foreign national restrictions are present on an award, or when desiring to work with items, technology, or other information subject to export controls.
Michigan Tech uses the “Introduction to Export Compliance” training provided by the CITI program. Once the training is completed, it is valid for 4 years.
Under the National Security Presidential Memorandum-33 (NSPM-33), “Insider Threat” refers to the potential for an individual connected with the University to use their authorized access to institutional resources either for unauthorized purposes or to unknowingly facilitate malicious activity via their authorized access and/or activities.
At Michigan Tech, we have incorporated an Insider Risk training program in conjunction with the annual IT Security training module, completed by faculty and staff every October, to coincide with Cybersecurity Month.
International Travel requests submitted in Concur are reviewed by the Research Security Office. If determined that further information would be beneficial to the employee prior to travel, the Research Security Office will reach out to the employee. For personal travel, please reach out to the Research Security Office at researchsecurity-l@mtu.edu if you would like additional information regarding your travel.
CITI Training Program
Logging Into an Existing CITI Program Account
If you have already taken courses through the CITI training program and are affiliated with Michigan Tech, you do not need to re-register. Simply log in using your existing CITI username and password.
Registering for a new CITI Program Account
To begin, go to the citiprogram website, click on “Register”. Follow the steps to register. Michigan Technological University is your Organization Affiliation.
Enrolling in the Export Compliance or Research Security Course
After creating an account, log in at citiprogram.org using your CITI username and password.
- Click "My Courses"
- Click “View Courses” box for Michigan Technological University.
- In “Learner Tools for Michigan Technological University” box, click "Add a Course."
For Export Compliance training, select “Export Controls” and “Submit”.
For Research Security training, select “Research Security Training (Combined)” and “Submit”.
Select "Start Now" to complete.
If you do not finish the training, the selected course will be added to your list of courses when you return to your welcome page.
After completing the training, download the completion certificate(s) from citiprogram.org, and email the certificate to researchsecurity-l@mtu.edu.
Contact researchsecurity-l@mtu.edu if you have questions about completion of Export Compliance or Research Security training.