ITS

Information Technology Services
Information Technology Services

Cybersecurity Education and Awareness Program FAQs

IT Services has gathered a listing of frequently asked questions regarding our cybersecurity education and awareness program. If you have a question that is not found on the list, please fill out the Online Support Form or call us at 613-533-6666.


What is the objective of Queen’s University Cybersecurity Education and Awareness Program?

The purpose of the Education and Awareness Program is to educate all faculty, staff and students on cybersecurity best practices, create awareness on how to identify cybersecurity threats, and instill learning on how to respond to them.

Who can take part in the program?

At this time, the students, staff and faculty can take part in the program:

  • Degree completing students - Any individual enrolled in one or more degree completing course in the current academic term
  • Employees - Faculty, Staff, Librarian, Casual, Student Contract, Faculty Emeritus
Is it mandatory to take part in the Cybersecurity Education and Awareness Program?

It is expected that members of the Queen's community will complete the modules assigned to them as part of the Cybersecurity Education and Awareness Program. The program will help you understand, recognize, prevent, and respond to security incidents to protect the confidentiality, integrity, and availability of Queen’s information and resources.

What are the components of the program?

Program includes 4 components:

Interactive Training: This includes Annual training and supplementary Role-Based training specific to your function at the University.

Simulated Phishing: This includes fake phishing emails that are sent to everyone when they complete the Annual training modules. The purpose of this simulation is to determine if the program content is helping people to identify, report, and action malicious emails.This allows us to continuously enhance the training to better fit Queen's needs.

CyberStrength Assessments: This includes brief assessments that are sent to everyone when they complete the Annual training modules. These assessments present a variety of scenarios and ask questions designed to gauge the adequacy and usefulness of the training. This allows us to continuously enhance the training to better fit Queen's needs.

Awareness Material: This includes cybersecurity material that will be updated quarterly on the IT Services website.

What is the difference between annual training and role-based training?

Annual training occurs in October and provides baseline cybersecurity training to everyone. Role-based training occurs throughout each year and is specific to your role at Queen's and the type of data you access. Annual and role-based training is refreshed each year to reflect current cybersecurity topics and threats.

How long does the training take to complete?

Annual training will take approximately 20 minutes every October to complete, and role-based training will take 10-20 minutes throughout each year, depending upon your role.

How does the program benefit me?
  • For Users: It will allow you to develop skills that are transferable beyond the workplace to protect yourself in digital environments.
  • For Queen’s University: Completing the training modules supports your role in maintaining the confidentiality, integrity, and availability of Queen’s information and resources.
How do I enrol?

You will receive an email invitation from no-reply@queensu.ca with a link to access your training assignment(s). You can also access your current assignments at queensu.ws01-securityeducation.com. Use your NetID and password to log in to the platform. Core training invitations will be sent out annually in mid-October and Role-Based training invitations will be sent out every three or six months (depending on your role).

Do I need to take the training again in the future?

Queen’s Cybersecurity Awareness Education training will be offered annually. Annual and role-based training content will be refreshed each year to reflect current cybersecurity topics and threats. 

Who do I contact regarding any technical issues, question, or concerns related to the program?

Please contact the IT Support Centre at queensu.ca/its/itsc with any questions by filling out online help form.

Is the training content customized for the Queen’s environment?

The Education and Awareness Training Program has been customized for the Queen's environment to leverage the services and tools offered at Queen's (e.g. Office365, Teams, NetID, Secure Electronic Destruction, Reporting Suspicious or Unwanted Emails).

Can the training be taken on-demand? How are users who miss the window for annual training in October kept current?

New users (staff, faculty, students, etc.) that join six months before the next Annual Training in October (between November and April) will be enrolled to take the Annual Training the same month they attend their Queen's New Hire Orientation.