Due to new security requirements recently introduced by the National Institutes of Health (NIH), we have been required to temporarily pause access to data from theNIH's database of Genotypes and Phenotypes (dbGaP) and other controlled-access repositories.
While essential work to meetNIST SP 800-171 requirements has been ongoing, the timeline for full compliance was accelerated following the publication of the updatedNIH Security Best Practices for Users of Controlled-Access Data. This policy introduces additional security standards under theNIH Genomic Data Sharing Policy that require controls to be added to our current environment to reach compliance. These standards include 110 complex controls that are being evaluated and addressed by 25+ internal teams.
We understand the significant impact this has on your research and the important work in which we are engaged, and we are committed to resolving this issue as quickly as possible. Our Information Technology team, along with outside contractors, is working diligently to upgrade our cybersecurity environment to meet the needs of all users under these new requirements.
We are committed to completing this work bythe first quarter 2026, with a goal of completion by January. Thank you for your understanding and cooperation. We will provide regular updates on our progress as we move closer to our completion date.
If you have questions, please feel free to contactJoseph Andrews, PhD, at joseph.andrews@advocatehealth.org.