Project Type: Maintain Compliance Readiness
2024 UNC HIPAA Risk Assessment
ActiveWhat is it? The HIPAA Security Risk Assessment is a federally mandated evaluation of the University’s implementation of the HIPAA security rule. We will first identify any necessary risk mitigation work, and if needed establish a plan to address it. Why are we doing it? Under the HIPAA Security Rule, we are required to conduct an accurate and thorough analysis of the potential risks and vulnerabilities to the confidentiality, integrity, and availability of electronic protected… Read More about 2024 UNC HIPAA Risk Assessment.
Membership Rules for Zoom HIPAA Subaccount
CompletedWhat is it? Campus units that are covered by Health Insurance Portability and Accountability Act (HIPAA) rules use a version of Zoom that ensures Private Health Information (PHI) is secure. Employees are currently assigned to this Zoom HIPAA subaccount through a manual process. This project will use Grouper to automatically assign individuals in HIPAA covered units to the appropriate Zoom configuration. This change aligns with rules already in place in other ITS applications that define… Read More about Membership Rules for Zoom HIPAA Subaccount.
Faculty Workload Data Collection
Active, Key ProjectWhat is it? A new policy on faculty workload reporting has prompted a review of data collection processes. ITS is working with IT leaders across the campus to create a process and mechanism for collecting and reporting faculty workload data. All applicable schools will collect and submit workload activity for their faculty members to a shared platform. Some schools already collect the required information. Other schools will need to develop processes to start collecting the… Read More about Faculty Workload Data Collection.
Duo Universal Prompt Readiness Project
Active, Key ProjectWhat are we going to do? Duo is ending support for the Traditional Prompt on March 30, 2024. This project is focused on updating the UNC applications impacted by this change by moving to Duo’s Universal Prompt or alternate solution. Why are we doing it? This project is crucial as individuals may be unable to use some applications and services where Duo is used as the Multi-Factor Authentication (MFA) tool potentially impacting their daily work,… Read More about Duo Universal Prompt Readiness Project.
PeopleSoft Finance Upgrade
ActiveWhat are we going to do? ITS Enterprise Applications is upgrading the Finance component of ConnectCarolina to the latest version of the PeopleSoft Finance software. Why are we doing it? The upgrade ensures that Connect Carolina, UNC’s instance of PeopleSoft, stays current with the latest software, incorporates new features, and leverages the latest security features provided by Oracle for PeopleSoft Finance How does this impact our UNC community? Campus users shouldn’t notice any changes to… Read More about PeopleSoft Finance Upgrade.
PeopleSoft HR and Payroll Upgrade
ActiveWhat are we doing? ITS Enterprise Applications is upgrading the HR and Payroll component of ConnectCarolina to the latest version of the PeopleSoft HR and Payroll software. Why are we doing it? The upgrade ensures that ConnectCarolina, UNC’s instance of PeopleSoft, stays current with the latest software, incorporates new features, and leverages the latest security features provided by Oracle for PeopleSoft HR and Payroll. How does this impact our UNC community? Campus users shouldn’t notice… Read More about PeopleSoft HR and Payroll Upgrade.
Accountable Plan
ActiveWhat are we going to do? Updating ConnectCarolina to enforce compliance with the IRS Accountable Plan effective January 1, 2024. This change will enforce the IRS requirements that submission of reimbursements older than 60 days are taxable. No reimbursements will be issued if the submission is more than 180 days after the expense is incurred. Why are we doing it? The project is being implemented to ensure compliance with tax statutes relating to reimbursements. Non-compliance… Read More about Accountable Plan.
SPOTS to Campus Solutions Interface
CompletedWhat is it? The Space Planning and Occupancy Tracking System (SPOTS) serves as the system of record for all building and room information across campus. Currently, only some of these buildings and rooms are represented in ConnectCarolina. This project will create an automated recurring process that will add, update and remove building and room information in ConnectCarolina based on the information in SPOTS. Why are we doing it? The goal is for the Registrar’s Office… Read More about SPOTS to Campus Solutions Interface.
Mandatory DUO for student access to ConnectCarolina
CompletedWhat is it? ITS is adding 2-Step verification (Duo) for student access to ConnectCarolina. Students will be prompted for Duo authentication after entering their Onyen and Password to log in to ConnectCarolina. Current students who register for Carolina Key can log in to ConnectCarolina without entering their password or using Duo. Why are we doing it? This change is needed to help the University comply with the increased cybersecurity safeguards requested by the Department of… Read More about Mandatory DUO for student access to ConnectCarolina.
HIPAA Campus Risk Assessment for HIPAA Covered Units
CompletedThe Health Insurance Portability and Accountability Act of 1996 (HIPAA) is a broad federal law that is in part designed to provide national standards for protection of certain information related to the provision of or payment for health care. There are currently 11 HIPAA covered units outside of the School of Medicine which need to comply with the HIPAA Privacy and Security Rules. We will conduct a risk analysis to identify potential compliance gaps in… Read More about HIPAA Campus Risk Assessment for HIPAA Covered Units.