On October 30, 2018, Cornell’s Vice President and Chief Information Officer David Lifka and Vice President for Financial Affairs and University Treasurer Gerald Hector announced the creation of a lightweight Technology Risk Assessment (TRA) and triage process for those seeking new information technology solutions. The following Buying Manual revisions have been made to clarify roles and responsibilities and define the appropriate payment methods for software, licensing, and cloud services:
A TRA form must be completed for all purchases and renewals. The email response from the Information Technology Security Office (ITSO) must be attached to all purchases, i.e., purchase orders and procurement card (pcard) receipt submissions. There has been no change to the university's policy requiring procurement agents to approve any contract that requires a signature on behalf of Cornell University. In consultation with University Counsel, after completion of the TRA process and with approval from the ITSO, you may accept the terms and conditions of a “click-through” agreement and pay with procurement card only for transactions below $10,000.
Other Buying Manual changes:
If you have any questions or concerns, please contact your center director or Procurement and Payment Services.