Data and Information Security

Export controls can extendÌýto the data and electronic information researchers store, access, manipulate, and transmit electronically. As such, OEC works closely with CU Boulder's Office of Information Technology (OIT) to identifyÌýand protectÌýcertain research-related electronic informationÌýthat requiresÌýspecific security measures per federal regulations, sponsor requirements, grant/contract clausesÌýand/or institutional policies.

The data and information security needs of researchers are identified through existing compliance procedures. Once identified, OEC assists researchers byÌýdetermining whichÌýregulations applyÌýto the electronic information (EAR, ITAR, or CUI/NIST-800-171) and how to adequately implement controls through a Technology Control Plan (TCP) or use of one ofÌýCU's availableÌýIT solutions (see below).

Data security now requires you to "know your cloud infrastructure", including where servers are located and how data is routed.

Ìý

The Preserve

CU Boulder's CMMC Certified IT Environment for projects involving CUI and Export Controls

Research and expertise across CUÌýBoulder.

Ìý Ìý

Our 12Ìýresearch institutes conduct more than half of
the sponsored research at CUÌýBoulder.

More than 75 research centers span the campus,
covering a broad range of topics.

A carefully integrated cyberinfrastructure supports CUÌýBoulder research.

Ìý Ìý