Information Security Office Risk Assessment
The Information Security Office Risk Assessment (ISORA) is a university wide risk assessment of Information Security to comply with State regulations. The state and the university administration require the university to undergo an annual assessment of the university's information resources and measure the risk to those resources. This process helps identify the security of systems with sensitive data. As a "steward" of university data, you will be asked to classify data residing on your computer according to the Data Classification Standard.
University Data vs. Personal Data
According to the Data Classification Standard, ISORA answers should be based on university data.
Data that is personal to the operator of a system and stored on a university IT resource as a result of incidental personal use, is not considered university data.
For example, personal credit card statement stored on your computer would be classified as personal data and would not be part of your data classification.