ORS 276A.323 section 2c states that all state agencies (as defined in ORS 174.112 and included in the Executive order no.16-13
Unifying Cyber Security in Oregon) must conduct and document the completion of annual information security awareness training for all agency employees which includes but is not limited to managers, board members, senior executive staff, contractors and volunteers. Per the Chief Information Security Officer, CSS can not exempt state agencies defined in ORS 174.112 from this statutory requirement.
If your agency has been assigned the DAS EIS Information Security Training: Foundations course and you believe that your agency does not meet the defintion above OR your agency provides an equal or better alternative training please contact firstname.lastname@example.org.
If you need to deliver the DAS EIS Information Security Training: Foundations course outside of Workday Learning please follow the instructions below.