This page lists the Risk Categories of the Information Risk Self-Assessment. Click on a section to view the specific assessment questions in that area and references to U of T security controls. Further guidance, existing U of T resources, and links to industry best practices can also be found here.

A list of the priority questions for 2020/21 can be found here.

Each question in the assessment is scored using a Capability Maturity Model. Click here for descriptions of the CMM Scores.