2.1.1.1 User Requirements
Access is granted to an individual as needed to support business functions for stated business
purposes only through user requests in the Banner Authorization Request application (BAR),
requiring supervisor and data steward approval. Access should be safeguarded by the
individual;
-Is BAR going to be used for access requests in all cases? There are many systems that are not integrated with the BAR right now. How will access to systems not integrated with BAR be addressed?
3.2.1 User Responsibilities
Test fixes within a reasonable timeframe (Note: incidents pending approval are closed after two
weeks of no response)
-Can IT provide formal testing requirements. Too often we have users that know very little about QA/Testing. We need to formalize what testing needs to be done, how it should be done, what should be tested, when it should be tested, and what results should be provided after the tests have been completed.