IT Risk and Compliance works jointly with the IT Security Office to ensure that information technology services are delivered within the context of an acceptable risk management framework. This includes collaborating with stakeholders, identifying and mitigating Risk and Compliance issues associated with ITS policies and processes, driving audit issue remediations, and ensuring that established security controls are operating effectively.