The Office of Information Security is responsible for managing the CU data governance process, multiple system-wide policies, CU security standards and reporting to CU Board of Regents and other governance groups about information security. These are managed in accordance with CU processes for policy management. We are also sometimes consulted on policies managed by other groups and asked to review proposed legislation related to information security or privacy.

Individual offerings under this service:

  • Security program reporting
  • Data governance
  • APS policies
  • CU security standards
  • Legislative review

Who can use the service?

Most aspects of this service have a multicampus, CU-wide focus and are available to departments across CU.

What does it cost me?

Policy and governance services are provided at no cost to departments at CU.

Where do I go to get started with this service?

If you would like to know more about policy and governance services, please contact