Cloud Services/Software Review
- Former user (Deleted)
- Ken Schreihofer
- Vladimir Plotkin
The UMBC software review process is a comprehensive assessment of software purchase and renewal requests for compliance with security, technical, procurement, and legal policies.
The State of Maryland requires an efficient and effective audit review process whether the software is used on personal computers or as part of a cloud-based Software as a Service (SaaS). The review process is designed to reduce risks associated with data integrity, shared network services, and contract requirements between third party vendors and the University.
Compliance with federal and local data requirements (FERPA, HIPAA, etc.).
Compliance with state purchasing and COMAR regulations.
Data storage, access, confidentiality, integrity, sensitive institutional information and personally identifying information.
Yes. However, software installed on a local machine is usually reviewed more quickly and is of lower risk.
DoIT Business Analyst, DoIT Security, UMBC Legal, and UMBC Procurement