When preparing a proposal, the Sponsor may ask for security information about the server or services you will use. We provide a list of approved services here and we provide security information about the BU managed network drive and BU managed computers.  

 When Office of Sponsored Programs, Industry Engagement, or other BU contracting offices review a research contract that has special security requirements, they will ask BU Information Security to conduct a review.  As part of that review, we will reach out to the PI and ask about the devices and services that will be used.  Our role is to ensure that researchers are using devices and services that comply with the contractual requirements.  In some cases, we will work with IS&T or the applicable IT support group to add any additional security controls required by the contract.

When conducting research, you many need to use transcription services, BU managed apps, or even apps not managed by BU but have been reviewed and cleared by BU InfoSec.

When closing out an IRB or Award, you will generally need to retain the data for seven years on BU approved storage, as required by the BU Record Retention Policy.