Hello everyone,
I have a question for the hive mind. For those of you who have implemented Jira in the FDA regulated, 21 CFR Part 11, validated world, did you complete a risk assessment of the functionality/intended use/etc as part of your validation effort? If yes, what sort of risks did you capture?
Thanks for your help,
Chris
Hello Chris,
Yes you need to carry our a risk assessment on Jira and your specific use of Jira.
Assuming that we are talking only about electronic records, typically the risks related to Jira are:
1) Jira bugs or misbehavior:
a. Loss of data
b. Corruption of data
c. Modification of data
2) User action:
a. Loss of data
b. Modification of data
c. Security issues
Others may be applicable depending on the exact use you make of it.
This leads you to the consideration of common controls such as backup management, access management, credentials and permissions, training and integrity checks.
If you need more info just let us know.
Matteo
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
Hello Chris (and everybody else),
We have recently launched a service to provide a fully 21 CFR 11 compliant turnkey solution based on Atlassian tools. Check this if you are interested.
https://softcomply.com/medicompli/
We can also help you set it up yourself in your own instance if you prefer.
Matteo
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.
You must be a registered user to add a comment. If you've already registered, sign in. Otherwise, register and sign in.