Technical Business Solution Intake Process

Prior to purchasing software or hardware that will impact data management, storage, dissemination, security, involve controlled unclassified or sensitive data, or impact user experience, and to comply with Mason's procurement policy, the Technical Business Solution Intake Process must be initiated.

ITS Business Analysts and staff from the requesting functional office are responsible for coordinating this process. For more details about the entire process, please see the Intake Process on our ITS Knowledge Base website.

Note: Significant architectural changes to software, such as moving the software to a cloud-based solution may require a new Portfolio Intake review.

Policy

All users of the George Mason University network must adhere to the following policies:

• University Policy Number 1301: Responsible Use of Computing.

The following policies may be applicable when purchasing or changing administrative or academic software.

University policies:

• University Policy Number 1307: Procurement and/or Development of Systems/Applications
• University Policy Number 1201: Non-Discrimination Policy
• University Policy Number 1203: Non-Discrimination and Reasonable Accommodation on the Basis of Disability
• University Policy Number 1308: University Information Technology Accessibility

Commonwealth of Virginia Law and Regulation:

• Information Technology Access Act § 2.2-3500 through § 2.2-3504 of the Code of Virginia

NIST 800-171 Rev. 1 Compliance:

• Protecting Controlled Unclassified Information in Nonfederal Systems and Organizations

NIST 800-53 Rev. 4 Compliance:

• Security and Privacy Controls for Federal Information Systems and Organizations

Federal Disability Laws and Regulations:

• 21^st Century Communications and Video Accessibility Act (CVAA)
• Americans with Disabilities Act of 1990 (ADA)
• Section 504 of the Rehabilitation Act of 1973
• Section 508 of the Rehabilitation Act of 1973

Additional Information

Several organizations may be a part of the Technical Business Solution Intake and have specific areas of the request to review. Requirements specific to each organization may be found in the following:

• Solution Integration and Architecture (SIA)
• Project Management Office (PMO)
• Enterprise Applications (EA)
• Enterprise Infrastructure Services (EIS)
• Information Technology Security Office (ITSO)
• Assistive Technology Initiative (ATI)
• Data Owners, if applicable (e.g., HR, Registrar, Finance, etc.)
• University Records Management
• Other Departments