Close menu Resources for... William & Mary
W&M menu close William & Mary

Information Security Awareness & Training

Mandatory Information Security Training

Active employees at the university are required by policy to complete Security Awareness Training each year. 

How to complete the training (total time to complete: 10 mins)

You can use the linked box below to access this year's training module.  Be sure to complete the Evaluation section at the end of the module; it is part of the required training.  You will know you have completed the training when you are presented with the results of the Evaluation section.  The due date for completing this training in Nobember 8, 2023.


If you have a legitimate reason for an exemption from this training please complete the Information Security Training Exemption Form available below.  Please note, there are restriction on legitimate reasons for exemption.  

Access the Exemption Form

Why is Information Security Training mandated?

Information security awareness and training are critical elements of William & Mary’s information security defense strategy.  Showing our users how to detect malicious cyber activity such as phishing emails, gift card scams, credential theft, ransomware, and other evolving threats is foundational to the prevention of cyber crime.  Recognizing these can help you spot similar malicious cyber activity in your email and web sites you visit.  Use the links on the left to learn about recent cybersecurity threats and tools and techniques for detecting and preventing them. 

Please help us reach our compliance goal  It is critical that all employees complete the training prior to November 8, 2023. 

To access the complete Information Security Training Policy, visit the Information Security Training Policy page. 


Contact the Technology Support Center (TSC)
757-221-4357 (HELP) | | Monday - Friday, 8:00 am - 5:00 pm