Security Strategy

Security Incident Reporting Procedures

Report all suspected or confirmed Security Incidents Immediately!

The University of Massachusetts Medical School (UMMS) Information Technology (IT) Help Desk (508-856-8643) should be notified immediately of any suspected or confirmed Security Incident involving UMMS Information Technology Assets or UMMS information in electronic or hardcopy format.

To view the full Security Incident Reporting Procedure, click here.

Security Risk Assessment

A risk assessment is an identification and analysis of risks faced by the school, centers, departments or groups. Risk is the potential of an incident happening that may result in unwanted loss of an asset or delay to normal business operations. A risk assessment and mitigation recommendations can be performed by IT Security, mainly for areas handing student-owned, regulated (PHI), and sensitive information. To request a risk assessment, email IT Security at: itsecurity@umassmed.edu or fill out the form below.