To help protect the integrity of WVU systems and data, and reduce the risk of a damaging security incident, employees on all campuses are required to complete annual cybersecurity awareness training.
Training will begin Monday (Oct. 6) as part of National Cybersecurity Awareness Month, and you will have 45 days to complete both the modules and the assessment.
Note that you cannot just skip the content and take the exam.
Employees will receive an email from Infosec IQ at their primary WVU email account, indicating you have been enrolled in the FY2026 Cybersecurity Awareness Training course. This mandatory course takes approximately 30 minutes to complete.
Security is a shared responsibility. Educating faculty and staff on how to work safely and identify various kinds of phishing scams and ransomware helps protect the institution and reduces the risk of an unintended data disclosure or a deliberate data breach.
Completion of this training is required by the Information Security Policy. All employees must complete training, including graduate assistants, students with an employee role, faculty/staff emeritus with an active courtesy appointment and Shared Users.
The enrollment email will be sent to @mail.wvu.edu or @hsc.wvu.edu for employees. Student employees without an @mail or @hsc employee email account will receive enrollment emails in their @mix.wvu.edu accounts.
Employees who don’t complete the course will be identified as non-compliant with WVU policies and will be required to change their Login password every 45 days rather than once a year.
Employees who don’t have a WVU email address or log into WVU systems for their jobs, such as summer camp workers or athletic event workers, won’t be required to take training.
Contact the ITS Service Desk if you have an employee who fits this description but received an enrollment email.