NSPM-33: What is it and how does it impact you?

The Presidential Memorandum on United States Government-Supported Research and Development National Security Policy, more commonly known as National Security Presidential Memorandum 33 (NSPM-33), was released at the end of the last presidential administration. A year later, the National Science and Technology Council issued guidance for NSPM-33’s implementation. This guidance includes several mandatory federal requirements designed to enhance the protections of U.S. Government-supported research and development (R&D) against foreign government interference and misappropriations by maintaining an open environment fostering research discoveries and innovation that benefit the United States and the world. These mandatory requirements will provide consistency while preserving the open and collaborative nature of the U.S. research enterprise through enhanced research security techniques focused on responsibilities, transparency, and equity.

NSPM-33 requires all federal research funding agencies to strengthen and standardize disclosure requirements for federally funded awards. NSPM-33 mandates the establishment of research security programs at research institutions receiving federal funds. NSPM-33 will also require oversight and enforcement activity in the form of administrative actions as well as civil or criminal penalties.

Why is NSPM-33 required?

There is an increasing need to protect U.S. funded scientific research from undue foreign influence, including exploitation of the open university research environment and intellectual property theft. NSPM-33 applies to research organizations awarded more than $50 million per year in total federal research funding.

What are the goals of NSPM-33?

To protect America’s national security while promoting openness in the research community
To ensure that policies do not fuel xenophobia or prejudice

Georgia Tech has established a working group to address the key NSPM-33 areas.

The working group's objective is to customize solutions for the Georgia Tech environment that will protect the researcher, without increasing bureaucracy. Four subgroups focus on different compliance requirements:

Disclosure Requirements, Standardization and Consequences for Violation – many disclosure requirements are being standardized across government agencies; therefore, the Georgia Tech working group is evaluating agency guidance as it evolves.
Digital Persistent Identifiers – registration for an ORCID iD has been identified as the solution for this requirement. All Georgia Tech researchers are recommended to register and obtain an ORCID iD and connect it to Georgia Tech.
Research Security Program: Foreign Travel Security, Research Security Training and Export Control Training – Georgia Tech’s working group has been working closely with GTRI to design processes and training for the Georgia Tech federally funded researcher. This includes the following areas: foreign travel security, research security export control, insider threat awareness, cybersecurity, etc.
Research Security Program: Cybersecurity