Enterprise Risk Management

Under the Office of General Counsel, Enterprise Risk Management (ERM) aims to build collaborative relationships across the University to evaluate and manage risk.

The Basics

Risk is uncertainty, caused by internal and/or external factors with the potential to impact (either positively or negatively) the University’s ability to achieve its Strategic Direction. Enterprise Risk Management is simply a process to deal with that uncertainty, comprised of four major steps:

  1. Risk Identification
  2. Risk Analysis/Evaluation
  3. Risk Treatment
  4. Risk Monitoring

Managing risk is part of all activities associated with the University, and affects every department, unit and person. In that way, we consider Everyone a Risk Manager!

Benefits of Enterprise Risk Management

  • ERM prioritizes response and action to the risks that have the most impact on the University and its mission. The mitigation of these risks saves money, time, reputation and lives.
  • ERM is a cyclical process that continuously improves the University’s management of current and emerging risks.
  • ERM engages the entire University and promotes communication across departments.
  • What keeps you up at night? What gets you up in the morning? ERM helps address these questions and provides peace of mind.

Leadership Commitment

Managing risk is an integral part of governance and assists the university in setting strategy, achieving objectives and making informed decisions.  The University’s leadership has shown tremendous support for the ERM program.