Specifications include, but are not limited to: 1.Solution must be a cloud-based service a.System for building training modules must be compatible with major browsers and operating system configurations, and be hosted by the Vendor 2.Solution provides an adaptive library of courses designed to educate, raise awareness, and change insecure employee behaviors a.Learning modules must be interactive and engaging (using videos as well as standard presentations) b.Training shall cover a large range of cyber-security, privacy and compliance topics (such as email phishing, safe mobile computing, privileged user security, PCI standards, cyber security awareness, HIPAA compliance) c.Training shall include in-depth modules (30 to 45 minutes in length) for the initial exposure to a security topic and micro-modules (5 to 15 minutes in length) to promote continuous learning 3.Solution allows for customizations and current events a.Provide the ability to incorporate CU branding and link policy/procedure documents within the courseware b. Provide courseware updates that will address current security issues and allow for courses to be assembled from a variety of topics 4. Solution provides training reinforcement materials a. Posters, games, quizzes and other materials that can reinforce training are needed 5. Solution is SCORM (Sharable content object reference module) compatible a. Ability to create SCORM files that can be uploaded to the CU (Canvas) or similar Learning Management System 6. Solution provides unlimited access to the courseware library 7. Solution allows for access by multiple CU security administrators who will build training courses
