Lessons Learned in Managing IT Risk

Wednesday, April 17 | 12:15PM–1:00PM | Gateway III
Session Type: Professional Development
This session will cover "understanding risk": what IT risk is, where it comes from, and what we can do about it. We'll also present a model that can be used for evaluating risk responses and examine three different areas of IT risk in the "lessons learned" section: information risk, endpoint risk, and system/server risk. We'll review examples and apply our understanding of risk, look at lessons learned when trying to manage it, and finally review some recommendations for lowering risk in those areas.


  • Jane Drews

    CISO, The University of Iowa

Resources & Downloads