Data and Information Security

Export controls can extend to the data and electronic information researchers store, access, manipulate, and transmit electronically. As such, OEC works closely with CU Boulder's Office of Information Technology (OIT) to identify and protect certain research-related electronic information that requires specific security measures per federal regulations, sponsor requirements, grant/contract clauses and/or institutional policies.


The data and information security needs of researchers are identified through existing compliance procedures. Once identified, OEC assists researchers by determining which regulations apply to the electronic information (EAR, ITAR, or CUI/NIST-800-171) and how to adequately implement controls through a Technology Control Plan (TCP) or use of one of CU's available IT solutions (see below).

Data security now requires you to "know your cloud infrastructure", including where servers are located and how data is routed.

 

The Preserve

CU Boulder's CMMC Certified IT Environment for projects involving CUI and Export Controls

Research and expertise across CU Boulder.

   

Our 12 research institutes conduct more than half of
the sponsored research at CU Boulder.

More than 75 research centers span the campus,
covering a broad range of topics.

A carefully integrated cyberinfrastructure supports CU Boulder research.