skip to main content
UTRGV

The University of Texas Rio Grande Valley

Main Menu
Donate Now Directory myUTRGV

You are here:

Home Resources Training Security Awareness

Information Security Office

  • Home
  • Report an Incident
  • News & Alerts
    • Archived News and Alerts
    • Archived Emails
    • Newsletter
  • Resources
    • Policies, Standards and Compliance
    • Software Assessment
    • Forms
    • How-To
      • Phishing Alert Button
    • Training
      • NEO
      • Data Owner
      • ISA
      • Security Awareness
      • Social Media
      • Phishing
      • Other
    • Events
      • NCSAM
      • NSAM
      • Data Privacy Day
    • Cyber Security Videos
    • Frequently Asked Questions
    • Training Feedback
  • About Us
    • Mission and Services
    • Staff Directory
    • Our Location

Training - Related Links

  • NEO
  • Data Owner
  • ISA
  • Security Awareness
  • Social Media
  • Phishing
  • Other

Report an Incident

REPORT SUSPICIOUS EMAIL

Contact Us

Information Security Office
Email: is@utrgv.edu
Phone: (956) 665-7823
Fax: (956) 665-3154
Facebook: www.facebook.com/utrgviso
Twitter: https://twitter.com/UTRGVISO

Quick Links

UTRGV Acceptable Use and Security Policy How to report suspicious/phishing emails Data Storage Guide Social Media Access Controls

Security Awareness Training using the KnowBe4 platform

As you all know, increasing our university’s security awareness is an important pillar to the safety of UTRGV and its data.  While some institutions view employees as the weakest link in protection, the UTRGV Information Security Office (ISO) believes that our employees are our most under-utilized asset in helping safeguard our data. As such, the ISO has been working hard to develop and implement new Security Awareness Training curriculum using the KnowBe4 platform. KnowBe4 is a state-of-the-art vendor that will be used by UTRGV for compliance training and will also be used by the Information Security Office to facilitate internal phishing campaigns.  Our end goal is to increase overall employee security awareness.

What security awareness training are included?

The ISO will begin with employee-wide training

The new training is more engaging than what was required previously, and it does not need to be completed in one sitting. There are various courses on security topics that our organization will be assigned, but everyone will be automatically registered to take at least the following modules:

  • Cybersecurity Awareness Training for Texas (30 minutes)
  • Information Resources Acceptable Use (20 minutes)
  • Tx-Ramp Training (20 minutes)

Additionally, throughout the year, certain departments will have available different training courses based on their areas of specialization. For example:

  • Health Insurance Portability and Accountability Act (HIPAA)
  • Family Educational Rights and Privacy Act (FERPA)
  • Payment Card Industry Data Security Standard  (PCI-DSS)
  • Protected Health Information (PHI)
  • Personally Identifiable Information (PII)
  • Data Classification
  • General Data Protection Regulation (GDPR)

Many more…

How do I enroll in the employee training campaign?

If you are an employee at The University of Texas Rio Grande Valley (UTRGV) then you've been automatically enrolled in training and received a link to access your training via email.

If you are an employee at UTRGV and have not received the email invitation, please send a request to is@utrgv.edu

I received the email invitation, now what do I do?

If you are an employee at UTRGV and have received the training email invitation then simply:

  1. Click the KnowBe4 Training link in your email
  2. Confirm your account with your UTRGV email
  3. Fill in your user information
  4. Start your training!

Identifying and Reporting Phishing Emails

In addition to using KnoBe4 as a training and compliance platform we will also be leveraging the platform to facilitate phishing awareness campaigns.  The Information Security Office will make every attempt to obfuscate the KnowBe4 vendor from phishing campaigns in order to avoid confusion.  However, when in doubt, please feel free to contact our office for verification.

Phishing is defined as the fraudulent practice of sending emails claiming to be from a reputable or known source in order to convince individuals to reveal personal information, such as passwords, or to use an action to install a type of malicious software.  Research estimates that 91% of cyber attacks start with a phishing email.

To combat phishing and build on the knowledge gained from the modules, our office will send out simulated phishing emails in the near future in order to get an accurate measure of our organization’s vulnerability to phishing attacks.

Our office has also worked with Information Technology in order to streamline the reporting process and make it as easy and unobtrusive as possible.  We will communicate details on the new way to report suspicious emails in the coming days.

 

Jump to Top

UTRGV

  • Twitter
  • Facebook
  • LinkedIn
  • YouTube
  • CARES, CRRSAA and ARP Reporting
  • Site Policies
  • Contact UTRGV
  • Required Links
  • Fraud Reporting
  • Senate Bill 18 Reporting
  • UTRGV Careers
  • Clery Act Reports
  • Web Accessibility
  • Mental Health Resources
  • Sexual Misconduct Policy
  • Reporting Sexual Misconduct