Research Security Program Overview
What is Research Security?
There are four main areas of importance related to research security. Each area is briefly discussed below - review the information on each area's website for assistance with risks, guidance, and best practices.
University and Sponsor Disclosure Requirements
- Disclosure of external relationship, both domestic and international. These relationships must be transparent and disclosed in accordance with applicable federal sponsor agency guidance/policies and SBU policy/procedures.
The University and Sponsor Disclosure Requirements webpage includes information on SBU's disclosure requirements and processes, sponsor disclosure requirements (what needs to be in a biosketch, current & pending, and other support documents, receipt of gifts, and sponsor requirements for organizational conflict of interest.
Research Data Protection and Security
- Protection of intellectual property, research data, and materials, i.e., cybersecurity, physical security, review of international relationships and higher risk activities, use of appropriate agreements (e.g., material transfer, confidentiality, collaboration, data-use, visitor scientists).
The Research Data Protection and Security webpage includes information on security (based on the type and source of data), management, protection (rights in data), U.S. government prohibitions on IT related equipment
International Engagements
- Identification and mitigation of potential undue foreign influence when engaging in international research activities.
The International Engagements webpage includes information on what the U.S. government considers high-risk activities (Restricted Parties, Countries of Concern, Foreign Talent Recruitment Programs, Emerging & Critical Technologies) when engaging with international colleagues, partners, collaborators, sponsors, etc.
Export Control Regulations & Sanctions/Embargoes
- Compliance with export controls and sanctions/embargoes regulations.
The Export Control Regulations webpage includes information about disclosure, shipment, use, transfer, or transmission of any export controlled item, commodity, material, technical information, technology, software, or encrypted software for the benefit of a foreign person or foreign entity anywhere (including the transfer of controlled information within the U.S. “deemed export”) and transaction and the provision of services involving prohibited countries, persons or entities based on trade sanctions.
Federal Requirement for Research Security Program
Stony Brook University, as a recipient of more than $50 million in federal funds is required to have a Research Security Program (National Security Presidential Memo 33 - read more). The Research Security Program must include a cybersecurity program, foreign travel security, research security training, and export control training (as needed) to protect federally funded research.
The Director of Research Security serves as Stony Brook University's (SBU) Research Security Program point of contact. The mission of the Research Security Program is to assist SBU faculty, staff, and students engaging in international activities with conducting such activities in a manner consistent with applicable requirements, including federal and state agencies, as well as SBU's own policies.
Research Security Program Coordination
In coordination with other university-wide departments the Research Security Program consists of:
- Cyber-Security (in coordination with DoIT)
- Data Security (in coordination with DoIT and IT partners)
- Disclosure to federal sponsor agencies (in coordination with Sponsored Programs Administration)
- Export Control Compliance
- Foreign Influence in International Activities
- International Travel Security (in coordination with DoIT and Enterprise Risk Management)
- Protection of Intellectual Property Guidance (Resources)
Read about Research Security Roles and Responsibilities for the Campus Community