CASE STUDY:
Compliance with State and Federal Change Management Rules Regulated Due to Grant Requirements

BRIEF:

The team running a multi-school research project funded through federal & state grants was brought into compliance.

ROLE OF MAX2:

Work with the Information Systems and Information Technology teams to understand regulatory requirements in place at the state and federal level.

Complete official audit of systems, controls, and change management to prioritize IS/IT activities.

Participate in change control board meetings on an ongoing basis to ensure ongoing compliance.

WHAT WAS DELIVERED?

Integration of researchers and central staff managing who manage the broader university network/systems to ensure proper controls and security protocols.

Certified audit of system architecture and management procedures to confirm compliance with regulators and insurance providers.

New policies for 3rd party selection and access controls.

Governance structure for change control management.

OUTCOME:

New systems managed by researchers were brought into compliance with state and federal mandates through adjustments to network architecture and implementation of cyber oversight by university IS/IT staff.

services:

Governance and Risk Management

INDUSTRIES:

Education

Learn more about our cyber risk assessments, cyber defense investment rationale, security reporting standards, or organizational governance best practices.

GET IN TOUCH

CASE STUDY:Compliance with State and Federal Change Management Rules Regulated Due to Grant Requirements