The Office of Information Security provides a variety of forms of security consulting and reviews to CU Boulder and System Administration. One of the common forms is to review technical designs/architectures for security risks, which is commonly performed during the planning process for IT projects and changes. OIS also provides guidance on available security options and best practices, including gathering input from peer institutions. These consultation services can overlap with compliance assistance to aid departments in identifying options to meet compliance needs. Consultations can be informal or include a formal write-up, depending on the situation.
Individual offerings under this service:
- Architecture reviews
- Security technology guidance
- Security consulting on IT projects
- IT audit facilitation
How is CU better through this service?
To provide the best and most efficient services to the CU community, the university is regularly evaluating and deploying new technologies and changes to existing technologies. To ensure these technologies are chosen and deployed with security and privacy in mind, the Office of Information Security offers time and expertise to review designs and plans for potential risks, and to make recommendations on mitigations and alternatives that could reduce risk to the university and members of the university community.
Who can use the service?
These services are available to any departments at CU Boulder and System Administration.
What does it cost me?
These services are provided at no cost to departments at CU Boulder and System Administration. For IT projects managed by Boulder Office of Information Technology or System Administration University Information Services, review services are built into the project process and should not require additional requests.