This policy defines VIU’s approach to managing its operational and strategic risks by setting out the principles the university will follow to manage institutional risks, as well as the roles, responsibilities, and accountabilities for Enterprise Risk Management.
About the policy consultation
Consultation on the draft policy is now open and members of the VIU community are invited to share their feedback. The consultation runs from Wednesday, February 18 until 4 pm on Tuesday, March 10. Input received during the community consultation will help inform changes to the proposed policy. Any feedback or submissions received after the consultation period concludes may not be reflected in the revised policy or in the consultation summary report.
Policy information
A board level policy is required because a key responsibility of the Board of Governors is risk oversight.
UVIC, SFU, TRU and UFV risk management policies were reviewed in developing the draft risk management policy. While some had short, high-level policies of only a few paragraphs, UVIC and SFU draw a balance of higher-level principles and detail on their institution’s approach to risk management, particularly around roles and responsibilities.
The new policy uses aspects of SFU and UVic’s approach combined with VIU’s original policy:
- New purpose statement
- New “Policy” section includes:
- the “General” section of the existing policy rewritten, but reflecting the same basic principles
- the “Objectives” from the beginning “Statement” of the existing policy
- “Scope and Application” brings over the existing section and adds an additional statement
- Under “Roles and Responsibilities:”
- New roles added to align with the Policy Framework
- The ERM Designated Responsible Person (DRP) and the Enterprise Risk Management Group have been removed as they are operational in nature and should be defined in the Risk Management Framework
- The SMT role has been changed to the Executive Team role
- “Definitions” section has been brought over and expanded
- Additional new sections have been added to align with the Framework
As VIU has an established Integrated Risk Management Framework, separate procedures have not been developed.
Documents for Review
Share Your Input
Once you have reviewed the policy, please share your feedback in one of the following ways:
- By taking this short survey.
- By sending an email to: policy@viu.ca.
- By writing to:
Policy Office
Office of the General Counsel and University Secretary
Nanaimo Campus
Building: 305, Room: 432
Mail drop: 305-4A
All feedback will be reported in public consultation reports and to the Board of Governors in accordance with FIOPPA. Feedback will be anonymized in all reporting.
Formal submissions
Formal submissions from groups or organizations can be submitted by email to policy@viu.ca or in writing (see above). Please state the name of your group and the position of the person submitting the feedback. These submissions will be provided in consultation reports and to the Board of Governors. They will not be anonymized and feedback will be attributed in reporting. Any personal information (with the exception of who provided the submission) will be redacted in accordance with FIOPPA.
Thank you for participating!
Once consultation is complete, this policy will go through the Board of Governors approval process. The policy may be updated based on the feedback received. The Policy Office may also make minor changes to formatting/wording for consistency. Consultation feedback and policy changes will be outlined in the consultation report. The consultation report will be provided to the Board of Governors and posted on this policy page.
We anticipate this draft policy will be provided to the March 31, 2026 Board of Governors meeting for approval. Check back on the GC07: Risk Management policy page for updates as this policy moves through the policy approval process.