Skip to main content
University of Florida
NaviGator AI home page NaviGator AI

Risk Requests and Assessments

You'll be in contact with your ISM throughout the Review process. If you're unsure who your ISM is, you can find them via the link below.
Find Your Leadership
Once you've identified a technology you want to work with, fill out the form at the link below to start the Review process.
Submit a Request
After submitting a Request, you can follow its progress through the Review process at the link below.
Track my Request

What is a Request?

Risk Requests are performed on a wide variety on information systems, including but not limited to:

  • Hardware, software, and network connections
  • Services (new or existing)
  • Renewal, migration, upgrades, enhancements of a pre-existing system or environment
  • Tools, cloud services, applications

Each new Request is reviewed for the following criteria: security, privacy, and alignment with the university's technology goals. 

Based on the information supplied in the Request, this process could involve multiple units, including: The Information Security Office, the Privacy Office, the Office of the General Counsel, and Procurement Services.

The process is designed to ensure the requested system complies with all university policies, Board of Governors policies, Florida Statutes, and federal laws.

IRM Project Steps

There are two review paths that an IRM Project can go through: Unit Review or UFIT ISO Review. The information supplied in the Request will be used to determine which path is appropriate for the technology and use case. Each has different steps:

Unit Review

  • Request Submission: Intended to gather information about the data and its usage.
  • ISM Review: Your department ISM performs an initial review of the technology being used.
  • Unit Closure: Some projects can be completed after a review by just your department's ISM.

UFIT ISO Review

  • ISM Categorization: Department ISM provides details about the implementation of your project.
  • Risk Analysis: ISO Risk Analysis reviews your project. 
  • Assessment Complete: Project Review by UFIT is Complete.

Getting Started

To begin the process, visit the Submit a Request form and fill out the fields. Once you submit the form, you will receive an email containing a tracking ID that you can use to check on the status of your Request.