Software Assessment

The purpose of the Software Assessment is to mitigate university risk through a comprehensive technical review exercise that informs the software purchasing process prior to executing a software contract. The goal of the assessment is to ensure new software purchases meet the university's technology, data management, digital accessibility, and security management standards.

Developed by Computing Services in partnership with the Office of Disability Resources, the University Contracts Office, Procurement Services, and Enterprise Risk Management, the assessment includes a thorough software technical evaluation to review risks in the following areas:  

• Information Security for the responsible storage and management of university information, including SOC 2 (Service and Organization Controls) certification and compliance for cloud-based storage.
• Identity Services for Single Sign-On (SSO) and Group Management capabilities to support Web Login and centralized provisioning access.
• Digital Accessibility for adherence to accessibility standards set forth by the WCAG 2.0 AA and Section 504 of the Rehabilitation Act and Americans with Disabilities Act.
• Disaster Recovery and Business Continuity for Recovery Time Objective (RTO) and Recovery Point Objective (RPO) evaluation to recover data and/or maintain operations in the event of a disaster or significant business disruption.

Eligibility

Academic and administrative departments planning to purchase software for the university

Request

Review the Software Assessment Process and Responsibilities before submitting a request.

• Software Assessment Consultation – for buyers new to the process
• Software Assessment Initiation [DOCX] – for experienced buyers

Fees

There is no charge for the assessment.