EDUCAUSE IT Governance, Risk, and Compliance Program
Governance, risk, and compliance (GRC) issues increasingly pervade higher education information technology. As institutional investment in IT and reliance on information systems have grown, so has the need for reliable structures and measures to ensure success and minimize failure.
IT GRC programs develop a framework for the leadership, organization, and operation of an institution's IT programs. This framework can be used by IT staff to ensure that their programs support and enable the institution's strategic objectives. The EDUCAUSE IT GRC program provides resources that help you define and implement IT GRC activities on your own campus.
At many institutions, the processes and lines of responsibility for risk, privacy, and compliance are not fully developed or settled, and the pandemic might prove an opportune time to devote energy to maturing these important areas.
The Evolving Landscape of Data Privacy in Higher Education report explores data privacy management; examines recent privacy legislation and issues that have arisen during the pandemic; and uncovers some of the biggest challenges and most promising paths forward for data privacy.