1. Information Technology
  2. Policies and Procedures
  3. Risk Management Working Group

Risk Management Working Group

Download the Risk Management Working Group policy or review the policy below.
 

This group is charged with responsibility for identifying areas or instances of risk related to IT services or resources, associating with each a sense of priority, and recommending a course of action to extinguish or mitigate the risk. Recommendations from this group regularly inform the annual IT planning process.

The work of this group also informs the following processes:

  • The “IT Disaster Recovery Plan” required by the CUNY IT Security Procedure attestation
  • The “Data Center Risk Assessment” required by the CUNY IT Security Procedure attestation
  • The IT “Risk Mitigation Plan” required by the CUNY Office of Environmental, Health, Safety and Risk Management
  • The IT “Risk Management and Implementation Plan” required by the CUNY Office of Internal Audit and Management Services

The designated GC IT Business Continuity Coordinator serves as the chair of the IT Risk Management Working Group