Risk Assessments

The Information Security Office's Risk Management Team helps to safeguard the University’s data and information technology assets, and ensure compliance with security regulations, policies, and standards in as governed by UMIT information security policy.

The team assists departments in understanding system risk assessments, and provides standard forms and directions, reviews all system risk assessments and retains the documents, reviews industry standards and activities of relevant organizations in order to improve the risk assessment process.

The assessment team examines many aspects of information security including physical security, protection of sensitive data, security of administrative practices, and the overall health and security of technology assets across the university.

Various services offered by the team are:

  1. Risk Assessment of Non-Standard device requests
  2. Risk Assessment of new software purchases / existing upgrades
  3. Assessment of network access rules and exception requests