Research security
In response to increasing concerns of foreign government interference and exploitation of federally funded research, the U.S. government has recently issued multiple policies aimed at protecting the results of federally funded research. Policies such as the National Security Presidential Memorandum on U.S. Government-Supported Research and Development (NSPM-33) address the risks of intellectual property theft through malign practices such as:
- Violation of data confidentiality in the peer review process
- Inappropriate transfer of U.S. intellectual property to file patents outside the U.S.
- Undisclosed researcher appointment/affiliations outside the U.S. that duplicate projects funded by U.S. federal agencies
The goals of NSPM-33 are to:
- Protect America’s national security while promoting openness in the research community
- Make requirements clear so that well-intentioned researchers can easily and properly comply
- Ensure that policies do not fuel xenophobia or prejudice
In January 2022, the National Science and Technology Council issued guidance for implementing NSPM-33, which provided information on establishing research security programs to address the concerns identified in NSPM-33.
The University of Nevada, Reno is committed to compliance with all federal research security regulations. Current and evolving University policies and procedures are explained here and will be updated as federal regulations become finalized.
Disclosure requirements and standardization
One important objective of NSPM-33 is to standardize requirements and processes for disclosure of information related to potential conflicts of interest and commitments from participants in federally funded research projects. As federal agencies determine how they will implement NSPM-33 disclosure requirements, Sponsored Projects will create a webpage that summarizes the disclosure requirements from each federal funding agency.
With the goals of increasing accuracy and minimizing the burden of disclosures, NSPM-33 advises federal funding agencies to permit the submission of required disclosures via a digital persistent identifier (DPI) service, such as ORCID. University Libraries maintains information on identity tools that provides information about registering for a free ORCID account.
In accordance with federal regulations, the University prohibits researchers working on federally-funded research and development awards from participating in certain types of foreign talent recruitment programs. Please see the Sponsored Projects policy on Malign Foreign Talent Recruitment Programs for information on disclosure requirements.
Research security & training
NSPM-33 requires a certification – from research organizations awarded more than $50 million per year in total federal research funding – confirming that they have implemented a research security program. The University of Nevada, Reno plans to establish a compliant research security program in advance of the anticipated deadline of February 2024. The University already meets several of the requirements.
NSPM-33 identifies baseline safeguarding protocols and procedures for information systems used to store, transmit and conduct federally funded research and development. The Office of Information Security has conducted a cybersecurity assessment and determined that current protocols and procedures for computers and other endpoints under their control meet NSPM-33 requirements.
NSPM-33 requires covered research organizations to have an international travel policy that includes elements of prior approval and training. The University’s International Travel Policy requires travelers to request prior approval through an international travel authorization request. Upon approval, the University’s Export Control Officer provides travelers with information regarding electronic device and data security in addition to export and import guidance. The University has an international travel laptop program which provides loaner laptops and encrypted flash drives for international travel. Laptops are wiped, reformatted and reimaged immediately upon return. Use of loaner laptops is voluntary for most destinations; however, it is mandatory for travel to countries deemed to be high cybersecurity risks.
The University of Nevada, Reno is committed to compliance with U.S. export control and economic sanctions laws and regulations. University employees, students and volunteers must comply with
- All federal laws and regulations
- NSHE Export Control and Economic Sanctions Policy (chapter 14)
- Sponsored Project's Export Control and Economic Sanctions Compliance Policy
The University utilizes the web-based Collaborative Institutional Training Incentive (CITI) for trainings related to export control and economic sanctions.
NSPM-33 specifies elements that must be incorporated in a research security training program. In December, 2022, the National Science Foundation (NSF) issued awards to four institutions under the research security training for the United States research community program. The goal of this program is to develop online training modules designed to promote the understanding of research security for researchers and other key personnel whose work is sponsored by federally funded research awards. Training modules are expected to be completed by early 2024 and will be integrated into the University’s research training program.
The University currently requires all faculty and staff to complete information security training on an annual basis.
Research security point of contact
The University of Nevada, Reno research security point of contact with responsibility for the implementation and oversight of the research security plan is the Vice President for Research and Innovation, Mridul Gautam.
Mridul Gautam will work in close consultation with the Vice President for Information Technology, Sasi Pillay.