Information Security is a team sport

We cannot protect all of UAB without your help. You play a key role in protecting information. Be knowledgeable. Be aware. Be proactive. Help us enable UAB to be world class.

The vision of UAB IT’s information security office is to “Secure to Empower.” Information Security is responsible for mitigating risk for the University through the development and maintenance of UAB’s Information Security strategy, which includes IT policies and best practices, security training and awareness programs, security monitoring and operations, secure architecture and vulnerability management. Our goal is to balance confidentiality (keeping private matters private), integrity (assuring that your information is complete and accurate) and availability (having timely and reliable access to your information).


2-Factor Authentication is required for all UAB students, faculty and employees.

Security Awareness

Be knowledgeable about common threats, like phishing, and how to protect yourself and UAB.

Tools & Services

Tools and services we deploy to help safeguard the University’s computing resources and data.

Data Classification

A classification system that makes it easier for faculty, staff and researchers to determine how to best secure the information.

Policies & Guidance

Policies help keep everyone safe from malware, data thieves, and identity theft.


UAB stays compliant with federal laws that stipulate how data related to HIPAA, FISMA, PCI, GLBA, and FERPA must be protected.

Latest from Security

  • Security tip: Watch for unemployment claims fraud

    Don’t let your guard down to identity theft. UAB IT and UAB Human Resources have seen a rise in fraudulent claims for unemployment compensation. As we near tax season, your personal information is at a greater risk. Things to watch[…]

  • Text messages to alert you when BlazerID password is invalidated

    To help better communicate with the campus community, UAB IT is updating the way it notifies users when their BlazerID password is “fuzzed,” or invalidated. Currently, users receive an email when their BlazerID is fuzzed — but users may not[…]

  • NCSAM: Think before you click

    With the global threat of COVID-19 changing the way many of us live, cybercriminals are taking advantage of COVID anxieties by using internet scams to extricate internet users’ personal and financial information. These scams are delivered through email, texts or[…]

  • NCSAM: Lock down your login

    The rise in the utilization of biometrics (faceID, thumbprint scans) has caused many people to wonder if passwords/passphrases are irrelevant. But it has been demonstrated that hackers can get around biometrics and compromise accounts. Therefore, passwords/passphrases are still relevant and[…]