Skip navigation
Risk Management Banner

Enterprise Risk Management


Working with risk owners, Compliance conducts risk assessments of University business operations to ensure that legal requirements are followed.  In addition, we manage several University policies related to ethical behavior and corporate governance.

How We Can Help - RiSk Assessments

We work with department liaisons to identify laws and regulations that impact their units and require compliance.   For example, the University is a recipient of federal funds and is therefore subject to complying with  FERPA or the Higher Education Opportunity Act, which are both federal laws. Each unit encounters a specialized risk landscape and the ERM Specialist is responsible for assisting these units identify and monitor methods of compliance. The final product is a risk assessment which states all of the compliance items, evidence of compliance, and recommendations for improvements.

A compliance risk assessment:

  • Helps identify situations where the University may not be in full compliance with a law.
  • Documents procedures (or the absence of procedures) for following laws.
  • Allows the University to be more proactive and forward-looking - by ensuring compliance now, we can reduce surprises and associated costs (such as regulatory fines) later.

The ERM Liaison Contact List provides the contact information for each division’s liaison.

The ERM Liaison Procedures document includes information about liaisons responsibilities and objectives.

University Polices Managed by Compliance

We also manage the following University policies:

  • Code of Business Conduct - The Code serves as a guide of appropriate business behavior for trustees, officers, faculty, and staff of the University of Denver.
  • Conflicts of Commitment and Interest - The policy limits opportunities for interference in University business decisions by the personal interests of trustees, officers, faculty, and staff.
  • Corporate Governance and Responsibility - The policy adopts emerging best practices in Corporate Governance and Responsibility in the following areas: Auditor Independence; Trustees, Senior Management, and Other Employees; the Audit Committee; and Document Retention and Periodic Destruction.

We can answer any questions you might have about these policies.  In addition, please let us know if you have any suggestions for change in any of these policies.