Carnegie Mellon University

Security 101 Training 

The Security 101 awareness training course, created by Carnegie Mellon University's Information Security Office (ISO), aims to equip university members with the knowledge and skills to safeguard institutional data and information systems effectively. Throughout the course, participants will learn to recognize security risks and understand the necessary steps to take to protect themselves and the university proactively from cyber threats.

First-time training takes less than an hour. The yearly refresher training takes about 15 minutes.

The course is hosted through Proofpoint's ZenGuide platform. Proofpoint is a cybersecurity solution company. The training is designed to be completed at your own pace. A certificate of completion will be emailed upon finishing the course.

  • Computing Policy
  • DMCA Regulations
  • Authentication
  • Password Strategies
  • Multi-Factor Authentication
  • Phishing
  • Malware

Training assignments must be completed within the allocated time, approximately 63 days from assignment, to ensure that account holders are promptly informed of university policies, procedures, and current threat scenarios while ensuring compliance with applicable regulations.

If training is not completed within the allocated time, account holders will be restricted from accessing most Web Login protected services (e.g., Box; Canvas; Google Calendar, Drive & Mail; Workday and VPN) until training is completed. If you finish training after your account has been restricted, you will regain access within an hour of finishing the training. If you need immediate access to your account, please call the Computing Services Help Center at 412.268.HELP (4357).


FAQs

Cybersecurity awareness training satisfies multiple compliance requirements.  A list can be found under Additional Information. Further, CMU's CIO, with the support of senior leadership and the Board of Trustees, has made mandatory training a condition of using Carnegie Mellon's computing resources.

ZenGuide is Proofpoint’s advanced security awareness and human risk management platform.  The ISO will be leveraging ZenGuide to deliver the Security 101 training as part of our mandatory education initiative.

Cybersecurity awareness training satisfies multiple compliance requirements. Further, CMU's CIO, with the support of senior leadership and the Board of Trustees, has made mandatory training a condition of using of Carnegie Mellon's computing resources. Check out the ISOs information on regulations requiring cybersecurity awareness training.

If your access is restricted, it means your access to the central university login system has been temporarily blocked until you successfully complete the Security 101 requirement. This prevents you from signing in to any service that uses your CMU credentials for authentication.  If you're unable to log in via SSO, you will be restricted from accessing any service that requires CMU Web Login authentication. This includes, but is not limited to:


Google Workspace (Gmail, Google Drive, Docs, Calendar, etc.)

Canvas (course materials, assignments, grades)

Workday (payroll, benefits, HR services)

Zoom (CMU-hosted meetings and webinars)

Box (cloud file storage and sharing)

LinkedIn Learning (online training and development)

JIRA / Confluence (project management and documentation tools)

Library Services (online databases and journal access)

VPN Access (remote access to CMU network resources)

Software Licensing Portals (e.g., MATLAB, Adobe, etc.)

Student Information Online (SIO) (course registration, billing, transcripts)

Faculty Information Online (FIO) (class rosters, grading, evaluations)

You are required to complete the training course, regardless of your affiliation, as long as you have an active Andrew account—even if you have deferred admission as a student. Completing this training is a condition for accessing Carnegie Mellon's computing resources.