New York University Skip to Content Skip to Search Skip to Navigation Skip to Sub Navigation

Compliance and Risk Management Program

The Compliance and Risk Program is part of New York University’s overall Enterprise Risk Management (ERM) Program and follows generally accepted standards for establishing and maintaining an effective compliance program. These standards have a number of key elements that have been incorporated into the University’s Compliance and Risk Program, including an effective compliance program structure, compliance risk assessments, monitoring and corrective action plans, and compliance policies, training and communication.

• Governance: The University’s governing authority, through the Audit and Compliance Committee of the Board of Trustees, is knowledgeable about the content and operation of the University’s Compliance Program and exercises reasonable oversight over its implementation and effectiveness.

Executive Oversight: Through the University Compliance and Risk Steering Committee, high-level management exercises overall responsibility for the Compliance Program.

• Day-to-Day Oversight: Designated responsible compliance and risk officers exercise day-to-day responsibility for the Compliance and Risk Program. Their activities are coordinated through several compliance and risk committees whose members include administrative and academic officers as well as representatives of the University’s global campuses.

• University’s Chief Global Compliance Officer: assists in coordinating the University’s compliance activities and reports regularly the results of these activities directly to high-level management and the Audit and Compliance Committee.

Compliance Risk Assesment:  a primary purpose of the University’s Compliance and Risk Program is to identify and assess significant compliance risks and implement internal controls to reduce these risks. As noted above, the University’s Compliance Program is part of an overall ERM Program and its regular, periodic risk assessments are based on the International Organization for Standardization (ISO) 31000, an internationally accepted ERM standard.
Monitoring and Corrective Action Plans: Steps are taken to achieve compliance through systems of monitoring, auditing and reporting suspected wrongdoing without fear of reprisal.

• Compliance Policies, Training and Communication:  Effective compliance communication to all levels of employees is achieved through readily available compliance policies found at; training programs on these compliance policies and the University’s Code of Ethical Conduct; compliance publications and newsletters, and systems for responding to individual inquiries and complaints.


Washington Square Arch

University Compliance & Risk Steering Committee Charter

The University Compliance & Risk Steering Committee is responsible for approving the University’s ethics, compliance, and training priorities and has oversight responsibility for the University’s compliance efforts.  

Read More

Compliance & Risk Officers Working Group Charter

The Compliance & Risk Officers Management Working Group provides compliance leadership in the University’s academic and administrative units and ensures effective communication and collaboration among those responsible for compliance.

Read More

Schools Compliance & Risk
Officers Taskforce

The Schools Compliance & Risk Officers Taskforce is made up of the compliance and risk officers who are responsible for day to day academic and administrative compliance activities at and among the Schools.

Read More

Office of Compliance and Risk
Risk Management Statement

The mission of the Office and Compliance and Risk Management is to assist New York University, as a global center of scholarship, teaching and research, to carry out its academic mission and in accordance with the University's legal, regulatory and ethical responsibilities.

Read More

NYU Footer