My company is currently implementing an Oracle ERP system and will be subsequently validating to 21 CFR 11 compliance. We need to create a "System Access and Security" procedure, but I'm not sure where to start. Does anyone have an example of such a procedure they would be willing to share?
- Home
- Forums
- Medical Devices, Medical Information Technology, Medical Software and Health Informatics
- Medical Device Related Regulations
- US Medical Device Regulations
- 21 CFR Part 820 - US FDA Quality System Regulations (QSR)
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
Computer System Access and Security Procedure example wanted
- Thread starter nosajucd
- Start date
My suggestion:
1. Create a general system procedure that gives requirements that any system you choose must meet. Include all the applicable FDA 21 CFR 11 requirements.
2. Choose your system (e.g. in your case, Oracle ERP)
3. Validate the system against the requirements in (1).
4. (if necessary) Create a work-instruction for staff on using the specific system you've chosen.
Depending on how stuff fits together, you might be able to just tack-on "system access and security" requirements in your documentation control procedure.
1. Create a general system procedure that gives requirements that any system you choose must meet. Include all the applicable FDA 21 CFR 11 requirements.
2. Choose your system (e.g. in your case, Oracle ERP)
3. Validate the system against the requirements in (1).
4. (if necessary) Create a work-instruction for staff on using the specific system you've chosen.
Depending on how stuff fits together, you might be able to just tack-on "system access and security" requirements in your documentation control procedure.