The Information Security Management (ISM) subcommittee of the Information Technology Advisory Committee (ITAC) to the UF Chief Information Security Officer (CIO) drafted new IT risk assessment standards and guidelines. Implementation is targeted for this Fall. Training classes will be offered with dates and times to be announced.
The risk assessment initiative will focus on confidential data. The goals are to mitigate the risks of unauthorized data exposure and to improve awareness of the risks. Increasingly, privacy legislation and inustry standards strengthen protection requirements and intensify liability for unauthorized exposure of confidential data. A culture shift is needed from top to bottom to improve UF data security." A risk assessment process that engages every level of the organization is a good way to impact change," says Kathy Bergsma, UF Information Security Manager.