SAT Foundations Project FAQ - Information Security at University of Toronto

Q: 1. How much does it cost to join the project?

<div class="fusion-layout-column fusion_builder_column fusion-builder-column-19 fusion_builder_column_1_1 1_1 fusion-flex-column" style="--awb-bg-size:cover;--awb-width-large:100%;--awb-margin-top-large:0px;--awb-spacing-right-large:1.92%;--awb-margin-bottom-large:20px;--awb-spacing-left-large:1.92%;--awb-width-medium:100%;--awb-order-medium:0;--awb-spacing-right-medium:1.92%;--awb-spacing-left-medium:1.92%;--awb-width-small:100%;--awb-order-small:0;--awb-spacing-right-small:1.92%;--awb-spacing-left-small:1.92%;"> Please contact the project team .

Q: 2. I am having an issue with the ORION/CIRA cyber security awareness training platform. Who should I contact?

<div class="fusion-layout-column fusion_builder_column fusion-builder-column-27 fusion_builder_column_1_1 1_1 fusion-flex-column" style="--awb-bg-size:cover;--awb-width-large:100%;--awb-margin-top-large:0px;--awb-spacing-right-large:1.92%;--awb-margin-bottom-large:20px;--awb-spacing-left-large:1.92%;--awb-width-medium:100%;--awb-order-medium:0;--awb-spacing-right-medium:1.92%;--awb-spacing-left-medium:1.92%;--awb-width-small:100%;--awb-order-small:0;--awb-spacing-right-small:1.92%;--awb-spacing-left-small:1.92%;"> Please contact your unit administrator or local help desk .

FAQ

General

1. How much does it cost to join the project?Jaqueline Tong2023-10-02T15:21:21-04:00

1. How much does it cost to join the project?

Please contact the project team.

2. What is expected from units when joining this project?Jaqueline Tong2023-09-28T15:32:03-04:00

2. What is expected from units when joining this project?

The following is expected from units who decide to join the project:

Designate one or several unit administrator(s) who will have delegated access to ORION/CIRA platform.
Enroll users.
Attend project weekly meetings (duration may vary from unit to unit)
Promote SATP within your unit (e.g. during meetings, via internal communications channels, etc.)
Encourage users to take the training.

3. How much time will the training take for users?Jaqueline Tong2023-09-28T15:34:38-04:00

3. How much time will the training take for users?

The modules are designed to be short (5-10 minutes).

The onboarding workflow takes up to one hour to complete, then curated modules will be provided on a regular basis. As of September 2023, we are aiming to provide a training refresh every quarter for a maximum of two hours of training per year. This approach will be refined further during Phase 2 of the project.

4. What communications materials are available to promote this project?Jaqueline Tong2023-10-02T14:21:41-04:00

4. What communications materials are available to promote this project?

Templates will be made available to units to communicate with their users prior to onboarding.

The U of T Information Security Strategy SharePoint website also provides resources on how to communicate on various strategic initiatives, including the SAT-Foundations Project.

5. What are the security topics covered as part of the training?Jaqueline Tong2023-10-02T16:41:30-04:00

5. What are the security topics covered as part of the training?

The learning outcomes framework is available in this section.

6. How often are phishing simulations run?Jaqueline Tong2023-10-02T15:19:00-04:00

6. How often are phishing simulations run?

We are aiming to run phishing simulations at the institutional level on a monthly basis. This approach will be refined and tested further during Phase 2 of the project.

7. I would like to be onboarded into ORION/CIRA cyber security awareness training platform. How can I get access?Jaqueline Tong2023-10-02T15:20:22-04:00

7. I would like to be onboarded into ORION/CIRA cyber security awareness training platform. How can I get access?

If your unit is participating in this project, your unit administrator can onboard you.

If you are not sure if your unit is participating, feel free to reach out to our project team who will be happy to help you!

Technical

1. Can units assign training to their users?Jaqueline Tong2023-10-02T15:23:59-04:00

1. Can units assign training to their users?

Yes. Units have delegated access to the platform. They can onboard their users and assign specific training modules as needed.

2. I am having an issue with the ORION/CIRA cyber security awareness training platform. Who should I contact?Jaqueline Tong2023-10-06T09:33:47-04:00

2. I am having an issue with the ORION/CIRA cyber security awareness training platform. Who should I contact?

Please contact your unit administrator or local help desk.

3. Can my unit run their own local phishing simulations?Jaqueline Tong2023-10-02T16:50:18-04:00

3. Can my unit run their own local phishing simulations?

Not at this time.

As of September 2023, and until the end of Phase 2, our focus is on running phishing simulations at the institutional level to provide a baseline to all participating units and fully test/refine the approach as needed. It is important that we foster an environment of positive learning, as per our guiding principles.

Local phishing simulations will be explored in the long term (after Phase 2) to give units the ability to run phishing simulations and better fit their unique discipline-specific needs.

Security Awareness and Training Program (SATP)

Security Awareness and Training Program (SATP)

Security Awareness and Training Program (SATP)

FAQ

General

1. How much does it cost to join the project?

2. What is expected from units when joining this project?

3. How much time will the training take for users?

4. What communications materials are available to promote this project?

5. What are the security topics covered as part of the training?

6. How often are phishing simulations run?

7. I would like to be onboarded into ORION/CIRA cyber security awareness training platform. How can I get access?

Technical

1. Can units assign training to their users?

2. I am having an issue with the ORION/CIRA cyber security awareness training platform. Who should I contact?

3. Can my unit run their own local phishing simulations?