Risk Management & Compliance Services (RMCS) serves as a resource to the MIT community in the areas of risk management and compliance. The office reports to the Vice President & General Counsel as well as the Risk and Audit Committee of the MIT Corporation. Since risk at the Institute is an important topic to MIT governance, the Risk and Audit Committee oversees the activity and policies of RMCS.

For additional information or questions about our office, please contact us at riskmanagement@mit.edu or compliance@mit.edu

Page Type: 

About Page
+ Deborah L. Fisher

Deborah L. Fisher

Institute Risk Officer

As Institute Risk Officer, Debby Fisher leads Risk Management & Compliance Services and is responsible for creating a comprehensive Institute-wide system of risk identification and assessment that supports informed risk-taking. Reporting to her are the Manager of Institutional Compliance and the Manager of Institutional Risk Services, both staff of Risk Management & Compliance Services.

Debby joined MIT in 2000 as Institute Auditor, leading the MIT audit function for 13 years before becoming Institute Risk Officer. She has led Institute-wide initiatives to formulate and adopt MIT’s Statement of Responsible and Ethical Conduct, and an institutional hotline. She participates in a number of ad hoc and standing councils and committees throughout the Institute. Currently, she convenes the Risk and Compliance Steering Group and the Risk and Compliance Advisory Team. Prior to joining MIT she held senior internal audit positions at USTrust Bank, Bank of Boston, and Bank of New England, as well as conducting engagements as a consultant in assessing business risk.

Debby is a graduate of Duke University (BA, Economics) and the University of Michigan (MBA). Debby attained her CPA while employed by Coopers & Lybrand in Boston. She is a frequent contributor to conferences and seminars of organizations serving the audit, risk management and higher education professions.

+ Kathleen K. Miller

Kathleen K. Miller

Manager of Institutional Compliance

Kate Miller joined MIT in 2014 as the Manager of Institutional Compliance.  In this role, Kate is creating an Institute-wide compliance network that builds upon the many, varied compliance activities at MIT.  In collaboration with colleagues across the Institute, Kate works to identify and assess legal and regulatory risks facing MIT and represents Risk Management & Compliance Services in compliance initiatives.  She provides support and education to members of the MIT community on compliance issues and regularly collaborates with the Office of the General Counsel, the Institute Auditor, and other areas that play significant roles in MIT’s compliance efforts.

Before joining MIT, Kate spent five years at Wellesley College as the inaugural program director for the Madeleine K. Albright Institute for Global Affairs, an interdisciplinary initiative founded in 2010 to prepare Wellesley students for global leadership.  Prior to that, Kate practiced law for several years at Ropes & Gray LLP in Boston, MA and worked as a public affairs specialist at the Federal Election Commission in Washington, DC.  Kate is a graduate of Brown University and the George Washington University Law School, where she was a Notes Editor of The George Washington Law Review.  She is a member of the Boston Bar Association and the National Association of College and University Attorneys.

+ Saumya Khanduja

Saumya Khanduja

Manager of Institutional Risk Services

Saumya Khanduja joined MIT in March 2018 as the Manager of Institutional Risk Services. In her role, Saumya is responsible for working with leadership and all levels of management to balance MIT’s entrepreneurial culture with risk-informed decision making. This includes directing a risk assessment and analysis program, facilitating risk identification and mitigation strategy discussions, assisting in efforts to enhance existing risk management practices, creating awareness around emerging risks, presenting on top identified risks to various community stakeholders, and serving as a resource across the wider community to effectively leverage mutual knowledge and understanding of risk and risk management.

Prior to MIT, Saumya led the internal audit and enterprise risk management functions for the Society for Human Resource Management (SHRM), a large professional society servicing the needs of human resources professionals worldwide, located in Alexandria, VA. Before SHRM, Saumya was a senior consultant and manager with Ernst & Young in both India and the US, advising clients on risk practices. She received degrees in engineering and business (MBA) from the University of Mumbai. She is a certified internal auditor.