The software acquisition and usage policy outlines the requirements for acquisition and use of software including the various amounts of planning and evaluations required. The policy outlines planning for and conducting evaluations of software as well as all necessary documentation and related activities. The software acquisition and usage policy provides an important standard for the procedures surrounding the acquisition and usage of all company software.
Risks addressed by this policy:
- Introduction of new system security vulnerabilities
- Unapproved software installations
- Criminal prosecution associated with software piracy