MIS001 IT Policy (RiskVal^SM)

Complete protection of valued information can only be achieved when IT professionals and users follow sound practices in using the hardware, software, and applications made available to them. Because of the limitations of automation, these practices need to be defined and enforced as polices for the procurement, support, and use of computer systems. In addition, this policy document defines appropriate actions that need to be taken to ensure the accuracy and integrity of records, and to ensure that electronic records and signatures are trustworthy, reliable, and generally equivalent to paper records and handwritten signatures executed on paper as required by Part 11.

This policy document is part of the RiskVal Life Cycle (SM) series of computer system validation documentation. It corresponds to the policy document described in "Deliverable 1.3 Information Technology Policy" in Appendix A of Computer System Risk Management and Validation Life Cycle written by the author of this policy document, Tim Stein, and published by Paton Professional, 2006.