Risk Management

Last Updated: 07/03/2018


The CU Boulder IT Security Office has developed a risk management and assessment service to meet campus needs in identifying and mitigating IT-related risk in campus departments.

The University of Colorado has a framework and proven tools to holistically manage risk. Risk management is a collaborative effort between campuses and system offices and is largely data driven. Risk management leverages assurance process integration through coordination between OIS, University Risk Management (URM), Legal, Internal Audit, and Campus Stakeholders. Consistent definitions for data classifications and impact levels play a key enabling role in effective risk management.

Learn more about CU Boulder's Risk Management Framework

This document should be reviewed by management and technology leads. The IT Security Office is happy to meet with departments to discuss risk assessment.

For more, visit the University of Colorado OIS Risk Management website.

Additional Information

Source material and additional information on IT Risk Management: