Information Security and Privacy Awareness Training

Middlebury’s LIS Security team is bringing to you a new computer based training option designed by Middlebury’s own Leanne Conway. This program is designed to introduce and educate computer users on safe and secure computing practices that are in-line with Middlebury’s policies and practices. 

Please select any link below to enroll in the Moodle course and start a class on your topic of choosing. Or choose this link to go directly to the Class introduction: Moodle Course Introduction.

What is ESD

Extremely Sensitive Data is defined as all data that is regulated by law or, if disclosed in a breach, may result in reputational loss to the College or punitive action.

What is PCI-DSS

The Payment Card Industry Data Security Standard (PCI DSS) is a proprietary information security standard for organizations that handle cardholder information for the major debit, credit, prepaid, e-purse, ATM, and POS cards. HTTP://

What is HIPAA

HIPAA stands for the Health Insurance Portability and Accountability Act. HIPAA was enacted by the United States Congress and signed by President Bill Clinton in 1996. HTTP://

What is FERPA

The Family Educational Rights and Privacy Act, known as FERPA, is a Federal law that protects the privacy of student education records. As Middlebury College falls under FERPA, you are required to maintain the confidentiality of student educational records.  HTTP://

What is GLBA

The Gramm-Leach-Bliley Act (GLBA) requires financial institutions – companies that offer consumers financial products or services like loans, financial or investment advice, or insurance – to explain their information-sharing practices to their customers and to safeguard sensitive data.

What is Phishing

A form of Social Engineering, phishing is a malicious effort, often email or web based, aimed at fraudulently gaining sensitive information from targeted individuals. This information is then leveraged for acts such as identity theft, system access or other malicious activities.

What is PII

Personally Identifiable Information (PII) is information that can be used on its own or with other information to identify, contact, or locate a single person, or to identify an individual in context. The Internet has made it easier to collect PII through breaches of internet securitynetwork security and web browser security, leading to a profitable market in collecting and reselling PII. PII can also be exploited by criminals to stalk or steal the identity of a person, or to aid in the planning of criminal acts.

What is Encryption

Encryption is the process of encoding messages or information in such a way that only authorized parties can read it. Encryption doesn't prevent hacking but it reduces the likelihood that the hacker will be able to read the data that is encrypted. There have been numerous reports of confidential data, such as customers' personal records, being exposed through loss or theft of laptops or backup drives. Encrypting such files at rest helps protect them should physical security measures fail. Encryption is also used to protect data in transit, for example data being transferred via networks or mobile devices.

How do you Protect a Mobile Device

Mobile devices, such as smartphones and tablets, have become incredibly powerful. Not only can you call anyone in the world, but you can watch movies, read your email, bank online and even install apps. These combinations of factors make mobile devices very useful, however it also can put you at great risk. Being able to access sensitive information from your mobile devices makes you a target for cyber crime and it is important learn how to protect yourself.  HTTP://

What is Safe Computing

Just like your work computer, your personal computer is also a target. Accessing personal information from your email, online banking, or even social networking can put you at risk for cyber crime. It is important to learn how to protect yourself.  HTTP://

How do You Work Remotely and Stay Secure

Thanks to significant advances in technologies and mobility, people are working less and less from the office. Increasingly, we work on the road from hotels, and airports, or in home offices. If you have been authorized to work from home or while travelling, there are several issues you have to keep in mind in order to ensure that your sensitive data is protected and that you are not putting your work at risk. Learn more about safely working remotely and take the quiz to see how well prepared you are to take your work outside the office. HTTP://

What is a Secure Password

With today's technology, you can store your whole life on a computer or mobile device-- Including sensitive information such as your banking numbers, travel documents, or social security numbers. Without password protection, nothing is safe. When you are working at an institution such as Middlebury College, which deals with a vast number of extremely sensitive documents, it is important to password protect your files to make sure you are not putting the information of others at risk as well. Strong passwords are extremely important to prevent unauthorized access to your electronic files, accounts, and devices. HTTP://