Risk Analysis and Evaluation 2015 Tier 1 Risk Profile. UNCW Institutional Risk Management

Similar documents
Office of Internal Audit. Activity Report. For the period from March 16, 2014 to August 8, Internal Audit Team

Market Tuition Rate 2016 Pilot Program Review Survey

Enterprise Risk Management

Chancellor s Workgroup: Fund the Vision

Strategic Vision Faculty and Staff Recruitment and Development

Enterprise Risk Management Panel Discussion

Each year, millions of Californians pursue degrees and certificates or enroll in courses

Strategic Plan

Each year, millions of Californians pursue degrees and certificates or enroll in courses

ATLANTA TECHNICAL COLLEGE

OBJECTIVES. To discuss what succession planning is. To discuss what succession planning is NOT. To discuss why is succession planning needed?

John Thomas Fletcher, EdD

Offshore and Cross-Border Programs

Board of Trustees IT Subcommittee Meeting. November 3, :00-2:50 PM Harper Center 3023

DR. ERIC GRAVENBERG, INTERIM DEPUTY CHANCELLOR DR. MICHAEL ORKIN, VICE CHANCELLOR FOR EDUCATIONAL SERVICES

Financial Aid. Standard IX

MAKING A COLLEGE EDUCATION MORE AFFORDABLE THROUGH INNOVATION AND COLLABORATION

BOARD OF TRUSTEES NORTH CAROLINA STATE UNIVERSITY AGENDA

Peirce College. Summary of Strategic Plan

Enterprise Risk Management at Pennsylvania State University (A) Strategy Implementation in a Decentralized Organization

Institutional Data Governance Policy

1.001 University Board of Trustees Powers and Duties

University of North Carolina Wilmington 601 South College Road Wilmington, North Carolina

MINNESOTA STATE COLLEGES AND UNIVERSITIES BOARD OF TRUSTEES Agenda Item Summary Sheet

SPE Strategic Plan APPROVED BY THE SPE BOARD OF DIRECTORS

Validation of PCI Compliance Requirements NC Office of the State Controller June 23, 2015

Credit Card Acceptance Policy. Vice Chancellor of Business Affairs. History: Effective July 1, 2011 Updated February 2013

Estimated Program Costs and Revenue. (G) Total Revenue - Total Costs (F-(A+B)) Year 1 $56,322 $0 N/A $54,869 $0 $54,869 -$1,454.

Yale University. Director, Enterprise Risk Management

REPORT TO THE LOUISIANA BOARD OF REGENTS

Taking Bold Steps. Taking Bold Steps.

Public Health Policy and Administration will be one of the required courses for the Master of Public Health program.

Curriculum Development & Procedures

The College of New Jersey Enterprise Risk Management and Higher Education For Discussion Purposes Only January 2012

Policy Changes Adopted on Second Reading

College of Architecture Strategic Plan

Strategies for Success within a Student Affairs-Based Enrollment Management Enterprise Custom Research Brief

College of Architecture Strategic Plan

THE UNIVERSITY OF NORTH CAROLINA REMEDIAL/DEVELOPMENTAL ACTIVITIES REPORT The University of North Carolina General Administration

Identity theft. A fraud committed or attempted using the identifying information of another person without authority.

Strategic Plan. Revised, April 2015

ALLAN HANCOCK JOINT COMMUNITY COLLEGE DISTRICT

6A. UNC Degree Program Proposals... Courtney Thornton

Education Administrator, Director and Principal Careers, Jobs, and Employment Information

Academic Program Review Handbook

Assumed Practices. Policy Changes Proposed on First Reading

Sociology Department Faculty Expectations Handbook For Appointment, Reappointment, Promotion, and Tenure

Comprehensive Consulting for Private Colleges & Universities. Enrollment & Financial Aid Solutions

STANLY COMMUNITY COLLEGE STRATEGIC PLAN REPORT Version

PLAN FOR INSTITUTIONAL SELF-STUDY NCA Accreditation A DECADE OF RENAISSANCE

State of the College Address. President Monte E. Perez

Foothill-De Anza Community College District Administrator Job Titles and Salary Grades

Guiding Principles for the Model Athletics Program

NORTHEAST IOWA COMMUNITY COLLEGE FY strategic plan _IE.Strategic Plan.

UNIVERSITY OF HAWAI I AT MĀNOA POSITION DESCRIPTION DEAN, COLLEGE OF NATURAL SCIENCES ~~~~~~~~~~~~~~~~~~~~~

/ BROCHURE / CHECKLIST: PCI/ISO COMPLIANCE. By Melbourne IT Enterprise Services

Department of Audit and Compliance. Quality Self-Assessment

DESERT COMMUNITY COLLEGE DISTRICT DIRECTOR OF TUTORING AND ACADEMIC SKILLS CENTER (TASC) AND SUPPLEMENTAL INSTRUCTION (SI) BASIC FUNCTION

CHAPTER TWO General Institutional Requirements

THE CHICAGO SCHOOL OF PROFESSIONAL PSYCHOLOGY. Annual Results Report FY 2004

Committee on Educational Planning, Policies and Programs May 21, UNC Degree Program Proposals...Courtney Thornton

Opportunity. for Greater Relevance LEVERAGING ENTERPRISE RISK MANAGEMENT: By Janice M. Abraham, Robert Baird, and Frank Neugebauer

BUDGET in BRIEF. University of Wisconsin Madison Budget Report

PREPARING FOR GR G AD A U D A U T A E E SC S HO H O O L O

January 31, Dear Mr. Reeves,

Best Practices Dialogue: Faculty Recruitment and Retention

Transcription:

Risk Analysis and Evaluation 2015 Tier 1 Risk Profile UNCW Institutional Risk Management Presented to the Audit Committee of the UNCW Board of Trustees, April 16, 2015

Introduction and Purpose One of the functions of Institutional Risk Management is to assure that risk identification, analysis and evaluation happens through regular and repeatable processes. In accordance with ISO 31000, today s process is designed: To create and protect value, is systematic, structured and timely, based on the best available information and is tailored to UNCW.

Assessment Goal and Processes Goal: Analyze and Evaluate 2015 Tier 1 Risk Profile Three Prong Assessment: 1. Investigators define and analyze risks identified by the IRM Committee (operational, financial, strategic and reputational). Senior officers assure an understanding and provide feedback and guidance 2. 2014 Tier 1 Profile is reviewed for mitigation and change 3. Senior officers undergo analyses of changing landscape

Acknowledgements IRM Committee Sharon Boyd Kathy Browder David Donaldson Pam Elliott Mark Morgan Liz Grimes Stan Harts Mark Lanier Kathy McDaniel Zach Mitcham Steve Perry Martin Posey Claire Stanley Sara Thorndike Ron Vetter Brian Victor Katrin Wesner IRM Steering Committee Denise Battles Pat Leonard Rick Whitfield John Scherer Stefanie Powell

Analyze and Evaluate 2015 Tier 1 Risk Profile UNCW Institutional Risk Management

Analyze New or Emerging Risks: Walkthrough Sample Risk Assessment UNCW Institutional Risk Management

Risk Statement(s): PCI DSS 3.0 Compliance Risk of a credit card breach that could result in negative reputational and financial consequences. Although not likely, the greatest risk to the University is the possible loss of our ability to accept credit card payments Why We Take this Risk: Walkthrough: Risk Assessment The acceptance of credit card payments in society is now expected as a means of payment Processing payments via credit cards is a convenience to the University and to our customers Risk Assessment Objective: Compliance with PCI DSS 3.0 is a policy requirement of the North Carolina Office of the State Controller (OSC), as well as a contractual requirement of the merchant card service provider, which alludes to potential fines for noncompliance

Indicators: Walkthrough: Risk Assessment PCI DSS 3.0 Compliance Increasing number of credit card breaches Focus on PCI compliance by all types of organizations, including higher education Supporting Data: Credit card data breach examples in 2014* Home Depot 56 million Michaels - 2.6 million Staples 1.2 million Neiman Marcus 1.1 million In 2014, 57 data breaches in educational sector affecting 1,247,812 records Roadmap published by UNC Office of Compliance and Audit Services * Source: Identity Theft Resource Center, Data Breach Reports, December 31, 2014

Current Mitigations: Walkthrough: Risk Assessment PCI DSS 3.0 Compliance PCI Committee Credit Card Acceptance Committee Virtual Network Self Assessment Questionnaire Passed Contract with Coalfire Proposed Mitigations (Recommendations): Respond to results of the gap assessment from Coalfire Hopefully primarily policy changes with minimal network infrastructure changes Employee training Policy and process changes to comply with new 3.0 PCI DSS standard Contract review with Aramark and Barnes & Noble

Analyze and Evaluate 2015 Tier 1 Risk Profile UNCW Institutional Risk Management

Analyze Mitigations: Current and In Process FY 2014-15 UNCW Institutional Risk Management

Mitigations: Current and in Process FY15 Essential Resources Campus Based Tuition and Fees proposal passed BOG approval; UNC System Security Fee passed BOG approval; Student enrollment and retention maintaining high levels; Potential for DE enrollment growth funding Regulatory Compliance Recruitment of Asst. General Counsel Compliance in process; Recently filled leadership positions in Accounting/Finance, Human Resources and Audit; Title IX positions in tuition request approved Talent Management Recruited Chief Diversity Officer and Associate Vice Chancellor Human Resources Tuition request included funding for equity and excellence

Mitigations: Current and in Process FY15 Infrastructure IT Network Access Layer (Upgrade project) has a funding plan Fire Protection 2 upgraded fire protection systems installed; 2 systems designed Risk Management Integration Risk management working cooperatively with Internal Audit, General Counsel and numerous departments/divisions Risk management providing education in classrooms and summer institutes

Review Trends and Changes UNCW Institutional Risk Management

Evaluation: Essential Resources Diverse Revenues Revenue by Source: % of Total 2014 State Appropriations - 32% (FY11 and FY12, 34%, 31%) 2014 Student Tuition and Fees 32% (28%, 30%) 2014 Sales and Services 16% (14%, 14%) 2014 Other Sources 20% (20%, 15%) Decreases in 2014 Grants and contract revenue Capital grant revenue Increases in 2014 Investment income Assessment: In the short term, less volatile. Tuition and fee proposal approved. Watch and monitor to see if it needs to elevate

Evaluation: Essential Resources Enrollment and Student Success Average Principal Loan Debt for UNCW undergraduate: $23,709, or 8% increase ($21,901 the previous year) Last year: The % of aid in the form of loans rose from 61% to 64%. The % of aid in the form of grants/scholarships decreased from 38% to 36%. Demographic changes (greater number of offers to maintain quality): The average admissions yield rate has decreased from 39% to 32% over a decade. The university must make more offers to meet enrollment targets. Application rates are healthy but have remained constant over the past three years. Highest graduation 4 year and 6 year graduation rates during the last cycle.

Evaluation: Retaining Talent Employee Turnover Analysis (FY13 thru Current) In FY13, 6 of 7 occupational groups experienced turnover greater than 10% In FY14, 3 of 7 occupational groups experienced turnover greater than 10% Using data since 2009-10, Total Faculty turnover (includes retirements) was 6.8% in FY14. Total Faculty turnover reached 5.6% in two previous years (FY12 and FY13). Voluntary turnover in FY14 was the second highest year at 3.0%. Executive turnover is greater than 10% of the Executive workforce 3 consecutive years (FY s 13, 14, and YTD 15). Professionals and Tech/Para-professionals turnover is greater than 10% 2 consecutive years (FY13 and FY14)

Evaluation: Retaining Talent Turnover by Occupational Group thru 3/2015 *FY15 data is through March 20, 2015

Evaluation: Retaining Talent 9 month faculty positions (Professor, Associate, Assistant and Lecturer) Faculty Voluntary Separation **FY15 through December does not give an accurate portrayal of FY15, since separations typically rise at the end of the academic year. For most of the faculty who left voluntarily in FY14 and FY15 through December using the information the faculty member provided during the exit interview, the informal reasons were: 9 faculty left for better positions and money (Accountancy, Anthropology, Public & International Affairs, Creative Writing, School of Health and Applied Human Services) 10 faculty left for personal reasons Faculty Appt Ended/Other Causes % Turnover- All Reasons Fiscal Year Faculty Retired Total 11-12 8 18 6 32 5.6% 3.2% 12-13 15 2 13 30 5.1% 0.3% 13-14 16 18 7 41 6.8% 3.0% 14-15 thru Dec 3 4 2 ** % Turnover- Voluntary

Analyze and Evaluate 2015 Tier 1 Risk Profile UNCW Institutional Risk Management

Senior Officers Review: Changing Landscape UNCW Institutional Risk Management

Changing Landscape Across the nation, declining state support is a driver for increased student costs NC funds higher education at a rate higher than most states Faculty turnover and bench depth were cited as driving issues for tuition funding across the UNC System Drive to institute performance based funding more than one half of states are experimenting with wide variances in methods and degree UNCW ranks high on measures of student quality, academic quality, faculty teaching and scholarship, affordability and productivity UNCW s value proposition is based on reputation for quality and affordability UNCW has a culture of doing things the right way and doing right by students Transition planning and turnover of leadership positions will be a challenge for UNCW

2015 Tier 1 Risk Profile UNCW Institutional Risk Management

2015-16 Tier 1 Profile 6 Risks appear as top rated risks - Med High or High 3 of the Top 6 Risks have compliance as a major component 2 of the Top 6 Risks have talent management as a major component; both of these risks are High 1 of the Top 6 Risks has slow external funding and authority as a major component In addition to the above, several of the Top Risks require some form of change management

2015-16 Tier 1 Profile (Top 6) Accelerating Change and Leadership Change calls for greater transition planning and adaptability Ability to Attract and Retain Talent in key categories is essential to advance the mission and meet state needs Challenges Related to Title IX, Clery, VAWA and other safety regulations are complex and changing Ability to address Aging or Deteriorating Infrastructure relies on timely external Funding and Authority Privacy/Identity Management and IT Security/System Protection may require greater resources Online Course Content Development requires new faculty and department processes to achieve ADA Compliance High High High Med- High Med- High Med- High

2015 Tier 1 Profile (Top 6) Risk Score, Likelihood and Impact Ratings Transition Challenges Attract and Retain Talent Title IX/Clery/VAWA Regs Infrastructure Funding and Authority PCI/PII Security &System Protection Online Courses ADA Compliance 0 2 4 6 8 10 12 14 16 Score Impact Likelihood

6 Other Risks to be Monitored and Mitigated Safety of Participants in International Travel, All Types Research Compliance (research involving subjects, conflict of interest, ethics) Other Compliance (e.g., Athletics Title IX, NCAA, EEO, Financial Aid) Student Wellness (e.g., infectious disease, suicide risk) Transportation by Vehicle, and Bike and Pedestrian Safety (athletics team travel, applied learning travel, bike/ped safety on campus and adjacent roads and intersections) Federal, State and Institutional Student Financial Aid

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information