IA Compliance for CIC and CISA Masters and Certificate Students (Non-JPME)

NDU ITD Service Desk: 202-685-3824


Read this page thoroughly and comply with all instructions; no deviations or substitutions are permitted.

NDU provides students with access to the Internet, wireless networks, curricula, and research tools -- all via DoD owned, managed, or compliant information systems. Access is predicated on student compliance with DoD Information Assurance (IA) regulations and requirements. No student will receive access to any NDU system until they have accurately and fully completed these IA requirements.

ALL new and returning AY19 CIC and CISA Masters and Certificate students are required to submit:

  • A certificate of completion ("CyberCert") for the most recent DoD Cyber Awareness Challenge (v 2018), taken AFTER APRIL 1, 2018, and no later than ONE WEEK prior to your course start date;

  • A certificate of completion ("PIICert") for the JS Privacy Act Awareness Course, taken AFTER APRIL 1, 2018, and no later than ONE WEEK prior to your course start date; and,

  • An NDU System Authorization Access Request Form 2875 ("2875") completed and signed by the student AND by the student's home unit/agency Security Office, taken AFTER APRIL 1, 2018, and no later than ONE WEEK prior to your course start date

  • IMPORTANT! All CIC and CISA students must associate themselves in Joint Knowledge Online (JKO) with NDU as their Secondary Organization, and remain so associated for the entire duration of their enrollment. 


STEP 1: Register for a JKO account. If you are already registered in JKO, skip to STEP 2.

 a. I am a Military Service Member or DoD Civilian with a CAC and a .mil email address

 b. I am a Non-DoD Federal Employee with a PIV and a .gov email address (Please ask your IT department to allow email to be received from @jten.mil addresses)
 c. I am a Private Sector Employee without a CAC or PIV and a commercial email address (Token)

 NOTE: When prompted for the name of a token sponsor, enter Jennifer Russell, NDU KMO, jennifer.russell@ndu.edu, 202-685-4700.

STEP 2: Designate NDU as the Secondary Organization in your JKO Profile. This is mandatory, and enables NDU to verify your completed training.  

 a. While registering or updating your existing JKO account, scroll to "Organizations," and click "Select Secondary Organization"

 b. In the "Find an Organization" window, click the black triangle next to "JKO" to expand options, and scroll to "NDU."
         c. Click the black triangle next to "NDU" to expand options, and scroll to the appropriate user type/component (ex., "Student-CIC" or "Student-CISA"). 
         d. Click the "Select Organization" button at the bottom of the window, and click "Save" at the bottom of your JKO Profile.

         e. See printable instructions on "How to Associate NDU with Your JKO Profile" 

STEP 3: Complete the DoD Cyber Awareness Challenge Course (v2018)

a. Via JKO at https://jkodirect.jten.mil/html/COI.xhtml?course_prefix=DOD&course_number=-US1364-18 

STEP 4: Complete the JS Privacy Act Awareness Course

a. Via JKO at https://jkodirect.jten.mil/html/COI.xhtml?course_prefix=JS&course_number=-US002    **IT'S IMPORTANT THAT YOU KEEP CLICKING "NEXT LESSON" INSIDE THIS COURSE UNTIL YOU CAN SEE AND PRINT YOUR JKO COURSE CERTIFICATE; stopping too soon fails to record your course completion date in JKO's tracking system.


IMPORTANT NOTE:If you completed the recently decommissioned J6SN-US-416 Personally Identifiable Information (PII) course between June 15-29, 2018, you do NOT have to take the substituted JS Privacy Act JS-US-002 course. Students may enter the completion date of EITHER the J6SN-US-416 PII course OR the JS-US-002 Privacy Act course in field 22d of the Form 2875,under "IA TRAINING CERTIFICATION REQUIREMENTS."


STEP 5: Download and save your CyberCert and PII course completion certificates for your records

a. When directed to print your course completion certificates, select "Print to PDF." 

b. Browse to a saving location on your computer and save.

c. Bring your printed certificates with you to your first NDU on-site course, as back-up verification. 



NDU 2875 for CIC LDP, eRes and DL
Certificate and Masters Multi-Year Programs

Mandatory File Naming Convention:

NDU 2875 for Homeland Defense and
Nuclear Energy Security 14-Week Certificate Programs

Mandatory File Naming Convention: 

Go to CIC's website

Go to CISA's website

STEP 1: Open, complete and sign your college or program's Form 2875  

 a. Click the appropriate link for your college or program's Form 2875 in the table above.

b. Enter required data in boxes 1, 2, 6, 11, 14, 15, 17, and 18.

c. Check boxes 22a and 22c. 

d. Enter the dates printed on your Cyber Awareness and Privacy (PII) course completion certificates in boxes 22b and 22d. 

e. Check box 23a. 

f.  Enter today's date in box 23c (*Must be done BEFORE signing).

g. Digitally sign box 23b. 

h. Save the signed 2875 as a PDF to your computing device, and/or print it.. 

NOTE: Digital signature requires CAC or PIV; if hand-signed, scan the signed 2875, save it as a PDF, and proceed to Step 2.

STEP 2: Have your organization's Security Office complete Part III of the Form 2875 

 a. Forward your signed 2875 to your organization's Security Office OR print out your signed 2875 and hand-carry it to your Security Office.

 b. Your Security Office must complete Boxes 36-40f, and a Security Officer must digitally or hand sign the form. All boxes are required. 

 NOTE: If hand-signed, scan the signed 2875, save it as a PDF, and proceed to Step 3.


STEP 3: Download and save your completed, signed 2875

a. Browse to the final draft of your fully completed, signed PDF 2875 on your computing device. 

b. Save your PDF 2875 one last time using the mandatory file-naming convention for your college per the table above. 

NOTE: The naming convention for your 2875 is critically important to its processing; please follow directions exactly!


STEP 4: Email your 2875 to NDU 

a. Open an email to ndu-stuacctreqforms@ndu.edu    

b. Attach your PDF 2875 to the email, ensuring that its name follows the correct naming convention exactly. 

c. Click send.


Joint Staff Privacy Act Awareness (FOUO) - (30 mins)  
Joint Staff Privacy Act Awareness (FOUO) - (30 mins)