Risk Management
Risk Management is the process of identifying, assessing and communicating threats regarding the University's financial stability, reputation, and data. The Information Security Office performs risk assessments to identify risks and protect the University as well as alert application or data owners of potential risks.
All departments and resource owners must register their existing web applications and services with the ISO. To register your application use this link for the ISO Application Registration. Assessments for University applications and third-party cloud vendors will be based on the criticality of data involved. Owners of applications and services that store, transmits or accesses Confidential Data must request a risk assessment for their applications on an annual basis. Data that is considered Confidential can be found here.
To request an application/vendor risk assessment click here to begin the process.
Links to ISO Forms:
ISO Application Registration Form