Research Security

Research security has emerged as a top priority for US institutions receiving sponsored project funds from federal sponsors. The NSPM-33 Implementation Guidance, released in January 2022, requires any institution receiving over $50 million in federal research funding to establish a Research Security Program touching on four main areas of focus: research security training, cybersecurity, foreign travel security and export control training. In response to this guidance, the Research and Innovation Office, in collaboration with several other campus units, including the Office of Information Technology Services, has established this page as a starting point in the development of our own Research Security Program.

What steps have recently been taken at the University of Arkansas?

· Completed an internal review of our approach to international collaborations and developed a framework for how we will continue to pursue international collaboration.

· The Provost’s Office has reviewed campus procedures regarding J-1 visiting scholars and have updated the campus procedures for review, management and out-processing.

· Our process for disclosure continues to collect information on foreign financial interests, foreign collaborations and involvement with a foreign talent recruitment program.

· In fulfillment of the research security measures incorporated in the CHIPS and Science Act, the Division of Research and Innovation conducted a review of campus practices and policies pertaining to foreign talent recruitment programs. As part of this review, policies have been updated to incorporate a prohibition from University of Arkansas affiliated individuals from participating in a malign foreign talent recruitment program (MFTRP). A MFTRP is broadly defined as a foreign program, position or activity that includes compensation (defined broadly to include compensation, honorific titles, research funding, etc.) in return for certain actions (e.g. unauthorized transfer of intellectual property, recruitment of other to the programs, establishing a laboratory or a company in the foreign country, etc.) sponsored by or based in a country of concern.

Cybersecurity

Cybersecurity is an integral part of protecting US federally funded research. Federal initiatives such as NSPM-33, the CHIPS & Science Act, and CMMC are working to address the need for increased cybersecurity. Additionally, the University of Arkansas has, and is continually, investing in cybersecurity efforts to protect your research. Our professionals have experience with protecting Federal Contract Information (FCI), Controlled Unclassified Information (CUI), and Export Control EAR & ITAR.

Our professionals can assist you in securing your research by providing the following:

· Security consultations (both Proposals and Awards)

· Technology solutions

· Awareness and training

· Compliance support

Foreign Travel Security

International travel is often required for university students, faculty, and staff to attend organization business and conferences, fulfill teaching obligations, research purposes, and/or many other aspects of their duties. The university maintains a joint effort between the Office of Study Abroad, the Office of Research Integrity & Compliance, and Travel Services to maintain a safe and productive journey that is complaint with government regulations on foreign travel, exports of controlled equipment, technical data, software, and technology.

As stated on the Travel Office’s International Travel section, it is required that all faculty, staff, guests, and students traveling outside of the United Stated on a university related activity are required to register their travel before they initiate a request for travel authorization.

Travelers should also follow travel standards stated by the Research Integrity & Compliance office’s International Travel section that specifies the requirements needed before traveling. The University Information Technology Services has Workstation Security Travel Standards that are also specified.

Research Security Training

Research Security training provides individuals with information on possible risks and threats to the global research ecosystem. The University of Arkansas, Fayetteville policy 206.7 Section V reflects federal and state regulations asserting that “The University’s export control officer shall furnish training to relevant faculty and administrative personnel whose work may be impacted by these regulations and provide technical assistance regarding compliance, as well as assisting with federal agency requests for export licensing as required."

All "University employees and others acting on the University’s behalf are responsible for ensuring that activities are conducted in compliance with U.S. export control laws and regulations. " The CITI Program training is available to the University of Arkansas faculty, students, and staff community in general. Individuals may also visit the U.S. National Science Foundation website to receive their research security training.

Export Control Training

Export control is vital to the research enterprise and daily operations of the university. Knowledge of export control principles guard against the accidental release of information, technology, or know-how and the procurement of controlled items deemed sensitive without a plan to safeguard the item. Visit the Export Control Training section to learn more about potential training available.