Information Security Risk Assessment

 

To further the goals set forth in the University's Information Security Policy (Directive 13), the University must take reasonable steps to protect the confidentiality, integrity and availability of its information resources. The Office of University Risk Management has tools academic departments and administrative units can use to conduct a risk assessment that will:

  1. Identify and assess information protected by federal and state laws and regulations, and University policies;
  2. Identify and assess the vulnerability of this information; and
  3. Implement appropriate risk control measures.

 

Please contact University Risk Management if you would like help in conducting a risk assessment.