FAQ: What should I report?
You should report concerning behaviors, activities, or circumstances that may indicate misuse of authorized access, attempts to improperly obtain sensitive information, threats of violence, or violations of security, research, export-control, cybersecurity, or disclosure requirements. You do not need proof that someone is an insider threat. Report the concern so the appropriate university office can review it, protect privacy and civil liberties, and determine whether support, mitigation, or further action is needed.
An insider threat may involve an employee, student, contractor, visiting scholar, vendor, partner, or anyone else who has been granted trusted access to university facilities, systems, data, equipment, or research. CDSE describes potential risk indicators as warning signs that can include individual stressors, choices, actions, or behaviors, while also emphasizing that indicators do not always prove wrongdoing and must be assessed carefully. (cdse.edu)
Report concerns such as:
- Attempts to access research data, controlled information, restricted systems, laboratories, or facilities without authorization or a legitimate need to know.
- Unusual downloading, copying, emailing, photographing, printing, or transferring of sensitive research, unpublished data, sponsor information, CUI, export-controlled information, intellectual property, or proprietary information.
- Requests from outside individuals or organizations to obtain nonpublic research information, bypass university review, conceal a collaboration, or route information through unofficial channels.
- Undisclosed outside appointments, foreign talent-program participation, sponsored travel, research support, consulting, gifts, compensation, or affiliations that may create a conflict of commitment, conflict of interest, or research security concern.
- Concealment of foreign travel, unexplained affluence, abnormal work hours, or attempts to remove information or materials from approved locations when the behavior appears inconsistent with normal duties.
- Mishandling, mismarking, unauthorized sharing, or suspected loss of classified information, CUI, export-controlled information, controlled biological or chemical materials, sensitive equipment, or sponsor-restricted data.
- Cybersecurity concerns, including shared passwords, unauthorized account use, suspicious removable-media use, attempts to disable logging or monitoring, unusual remote access, or suspected data exfiltration.
- Threats, harassment, intimidation, stalking, workplace violence concerns, or statements suggesting intent to harm people, facilities, systems, or research assets.
- Any situation where you are unsure but believe the activity could place people, research, systems, intellectual property, controlled information, or national security–sensitive work at risk.
Do not report someone based solely on national origin, ethnicity, religion, political views, personal relationships, or other protected characteristics. Reporting should be based on observable behavior, policy violations, suspicious contacts, misuse of access, disclosure concerns, or credible safety/security issues. Lawful whistleblowing, good-faith reporting of misconduct, and protected speech are not insider-threat activity.
If there is an immediate threat to life or safety, call 911 or campus police first. For non-emergency concerns, report through the university’s Insider Threat Program, research security office, security office, compliance office, supervisor, or other designated reporting channel. For cleared work, 32 C.F.R. § 117.8 requires reporting certain events involving classified information, insider-threat indicators, suspicious contacts, and suspected loss or compromise of classified information. (ecfr.gov)
FAQ: How do I report a research security or insider-threat concern?
The ORC&S “Report a Concern” page states that individuals with a reportable concern have several options for reporting directly to the federal government or to MSU, and that the Research Security team can help guide individuals to the appropriate reporting path. Reports are reviewed through the MSU Research Security Insider Threat Program with attention to applicable law, policy, privacy, civil rights, and civil liberties.
For non-emergency research security or insider-threat concerns, you may report directly to the university’s Research Security team, via Chris Jenkins, Research Security Officer, CLJ513@msstate.edu, and phone number 662-325-0400 or Dr. Chris Cheatham, Research Security Analyst and Insider Threat Program Senior Official, CLC1@msstate.edu, and phone number 662-325-8682.
Reporting options include:
- File through the MSU Ethics Line, which ORC&S notes can be anonymous. Select: Make a Report / Research / Research Security.
- Report to the DoD Hotline at 800-424-9098 toll-free or 703-604-8799 commercial.
- Report to the Defense Counterintelligence and Security Agency Inspector General Hotline at 1-855-865-1508 or by email at dcsa.ig@mail.mil.
- Contact the Research Security Officer / Research Security team directly by email, phone, or in person through ORC&S.
If you are unsure whether something should be reported, contact the Research Security Officer or submit a report through the appropriate hotline. You do not need to determine whether an insider threat has occurred before reporting a concern. The purpose of reporting is to allow trained personnel to assess the information, provide guidance, and take appropriate action when needed. For immediate threats to safety, contact emergency services or university police first.