Governance & Risk Management

The Governance, Risk & Compliance Office (GRC) at LUMS plays a crucial role in managing and protecting institutional data. It ensures that data is accurate, secure, and used effectively to support students, faculty, and staff while maintaining compliance with legal and regulatory standards. LUMS is committed to maintaining a secure and data-driven environment to enhance learning, research, and institutional excellence. 

The Governance Risk & Compliance Office (GRC) is a group that develops and implements the data governance (structure, data classification, data retention), and policies related to Information Systems and Technology in the organization. 

The main responsibilities of the GRC include the following:

  • Providing a two-way mechanism for communicating (e.g., a reporting structure and/or communication plan) about data initiatives across the University.
  • Identifying risks, performing risk assessment, finding treatment, contingency, and mitigation plans for electronic data. It sets out how to identify the risks and treatment options and implement the appropriate controls to keep the risk at an acceptable level.
  • Implementing policies, procedures, and guidelines to ensure data consistency, data standardization, data security, and data use.
  • Creating formal procedures for coordinating data users and technical groups for Data Governance projects.
  • Promoting best practices around data standardization.
  • Reporting and assisting DGMC in improving and creating new data governance policies.
     
Quick Links
Home
Governance & Risk Management
Departments
Data Management
Data Registers
Data Classification
Data Dictionary
Audit & Compliance
Policies & Procedures
Contact Us