Lincoln Land Community College has adopted a formal Artificial Intelligence (AI) Usage Policy to guide the responsible, ethical, and secure use of AI technologies across all areas of the college. This policy is now part of the LLCC Board Policy Manual – Chapter 10: Information Technology:

Policy (Chapter 10 – Information Technology – Section 10.3, item 8)

8. Artificial Intelligence (AI) Use

LLCC is committed to leveraging AI technologies to enhance education, administration, and operational efficiency while upholding fairness, accountability, and respect for privacy.

A. Preferred AI Service

1. Microsoft Copilot is the preferred AI tool for administrative and academic purposes and is authorized for use with protected institutional data due to its integration with the college’s robust data governance and security protocols.

2. The use of other AI tools with protected institutional data for business purposes is strictly prohibited.

B. AI Policy Principles

1.   Accountability: Final responsibility for content fact-checking and accuracy, and for actions and decisions involving AI lies with human users.

2. Fairness: Efforts must be made to ensure AI systems are free from bias and promote equitable  outcomes.

3. Privacy: Data used in AI applications must comply with privacy laws and the college’s data governance standards.

4. Ethical Use: AI must be used in ways that align with the institution’s values and avoid harm.

C. Guidelines for AI Use

1. AI may be used to streamline administrative processes such as admissions, advising, and scheduling, subject to human oversight.

2. Faculty may incorporate AI tools in teaching, grading, and course content creation, provided they retain oversight of the final outputs.

Preferred AI Tool
Under this policy:

• Microsoft Copilot is the preferred and approved AI tool for both administrative and academic use.
• Copilot is authorized for use with protected institutional data because it operates within LLCC’s secure Microsoft 365 environment and aligns with our data governance and security standards.
• The use of other AI tools (e.g., ChatGPT, Google Gemini, browser-based AI extensions) with protected institutional data is strictly prohibited for business purposes.

Using Microsoft Copilot Chat
To support this policy, Copilot Chat is now available to all employees through the Microsoft 365 web portal. It can help with:

• Drafting content or summarizing information
• Answering general questions
• Providing “how-to” support for Microsoft 365 tools
• Assisting with brainstorming and information gathering

View the Copilot Chat Quick-Start guide.

Cybersecurity is a shared responsibility — and it starts with awareness. As a reminder, all employees are required to complete the LLCC Spring 2025 cybersecurity awareness training by Wednesday, April 30.

This short training reinforces best practices for spotting phishing scams, protecting sensitive information and staying safe online. It only takes a few minutes to complete — but helps protect our institution year-round.

Look for an email from notifications@securityiq-notifications.com. Training reminders are sent every few days until completion. If you haven’t seen the message, check your spam or junk folder.

Please complete the training by April 30 to stay in compliance and support our campus-wide security goals.

Thank you for doing your part to keep our systems secure!

The second and final cybersecurity awareness training campaign for the LLCC 2024-2025 cyber training school year with Infosec IQ is underway. The campaign runs through April 30 and includes six short training courses, including assessments for the last three.

During the campaign, a series of simulated phishing emails will also be sent. The training in this spring campaign will focus on: secure use of ChatGPT, updates and patches, automatic updates, data loss prevention, data destruction and using public Wi-Fi. The purpose of putting this training into place is to raise awareness of the threats in our environment and to avoid costly data breaches.

Everyone receiving the email is required to complete this training by April 30. Failing to comply may result in loss of LLCC network access privileges and disciplinary action per board policy “8.6 – Employee Discipline.”

On April 1, you were sent an email notifying you of enrollment in the course. The link provided in that email will take you directly to your Infosec dashboard to complete the training. The enrollment email will be coming from Infosec IQ Notifications <notifications@securityiq-notifications.com> with the subject “Start your security awareness training.”

The second and final cybersecurity awareness training campaign for the LLCC 2024-2025 cyber training school year with Infosec IQ begins tomorrow, April 1.

The campaign will run through April 30 and include six short training courses, including assessments for the last three.

During the campaign, a series of simulated phishing emails will also be sent. The training in this spring campaign will focus on: secure use of ChatGPT, updates and patches, automatic updates, data loss prevention, data destruction and using public Wi-Fi. The purpose of putting this training into place is to raise awareness of the threats in our environment and to avoid costly data breaches.

Everyone receiving the email is required to complete this training by April 30. Failing to comply may result in loss of LLCC network access privileges and disciplinary action per board policy “8.6 – Employee Discipline.”

On April 1, you will be sent an email notifying you of enrollment in the course. The link provided in that email will take you directly to your Infosec dashboard to complete the training. The enrollment email will be coming from Infosec IQ Notifications <notifications@securityiq-notifications.com> with the subject “Start your security awareness training.”

We’ve received reports of suspicious text messages being sent to employees, appearing to come from upper management or other trusted individuals at the college. These messages often urge an immediate response and may ask you to buy gift cards, provide personal information or take other unusual actions.

These are scams.

Cybercriminals use urgency and impersonation to trick people into responding without thinking. Here’s how to protect yourself:

• Stop and think. If a text message seems odd or overly urgent, even if it uses a familiar name, take a moment to pause.
• Don’t respond. Avoid replying, clicking links or sharing any information.
• Verify through another method. If you’re unsure, contact the person directly using a known method (such as their college email or office extension).
• Report it. Report the message to the IT Help Desk at helpdesk@llcc.edu.

Remember: College leadership will never ask you to buy gift cards, share personal info or respond urgently via text without prior context.

Geofencing blocks access to LLCC accounts outside of the United States. If you are traveling outside of the country and will need access to your LLCC account, please let the help desk know to have geofencing deactivated for the duration of your travel.

Most account attacks come from outside of the country. Geofencing is a good measure to block those attacks and reduce the number of compromise accounts.

IT Help Desk
helpme@llcc.edu
https://it.llcc.edu
217-786-2555

LLCC’s cybersecurity awareness training program for the 2024-2025 training year with Infosec IQ runs through Nov. 30.

The training will include four short training videos and assessments. During the campaign, a series of simulated phishing emails will also be sent out. The courses in the fall module include social engineering, multi-factor authentication, data privacy, and incident response. The purpose of this training is to raise awareness of the threats in our environment to avoid costly data breaches.

Everyone receiving the email notification is required to complete this training by Nov. 30. Failing to comply may result in loss of LLCC network access privileges and disciplinary action per board policy “8.6 – Employee Discipline”.

On Friday, Nov. 1, you received an email notification of enrollment in the course from Infosec IQ Notifications <notifications@securityiq-notifications.com> with the subject “Start your security awareness training.” The link provided in that email will take the learner directly to their dashboard to complete the module.

LLCC’s cybersecurity awareness training program for the 2024-2025 training year with Infosec IQ begins Friday, Nov. 1 and runs through Nov. 30.

It will include four short training videos and assessments. During the campaign, a series of simulated phishing emails will also be sent out. The courses in the fall module include social engineering, multi-factor authentication, data privacy, and incident response. The purpose of this training is to raise awareness of the threats in our environment to avoid costly data breaches.

Everyone receiving the email notification is required to complete this training by Nov. 30. Failing to comply may result in loss of LLCC network access privileges and disciplinary action per board policy “8.6 – Employee Discipline”.

On Friday, Nov. 1, you will be sent an email notification of enrollment in the course from Infosec IQ Notifications <notifications@securityiq-notifications.com> with the subject “Start your security awareness training.” The link provided in that email will take the learner directly to their dashboard to complete the module.

Authentication to suit your taste

Welcome to week 4! Multi-factor Authentication (MFA) is just like cake — the more layers the better! When MFA is enabled, it will require anyone logging into an account to navigate a two-step process to prove their identity — usually via a push notification.

How it works: When logging into your account, you first provide your password or passphrase. Next, you will provide an extra way of proving that you’re you; this is typically done through:

• An extra PIN (personal identification number)
• An extra security question like, “What’s your favorite pet’s name?”
• An additional code, either emailed or texted
• A biometric identifier like facial recognition or a fingerprint
• A unique number generated by an “Authenticator App”
• A secure token is a separate piece of hardware (like a key fob that holds information) that verifies a person’s identity with a database or system

Look for this week’s Recipe for Cybersecurity poster on bulletin boards around campus. Thank you for being the key ingredient in our recipe for cybersecurity success!

Top your device off with a fresh update.

Welcome to week 3! Spice up your system with the latest updates and patches. Updates are free to download, and they stop your security from becoming stale.
Please Note: When downloading a software update:

• Only get it from the company that created it. Hacked, pirated, or unlicensed software versions often contain malware and cause more problems than they solve.
• Make sure the software or application you’re updating is approved by your organization. If you are unsure, please contact our team.

Chef tip: Where applicable, turn on automatic updates. When an update is available, it will remind you so you can easily start the process.

Look for this week’s Recipe for Cybersecurity poster on bulletin boards around campus. Thank you for being the key ingredient in our recipe for cybersecurity success!