New Guidance Document - ISPE GAMP® Good Practice Guide: IT Infrastructure Control & Compliance
The ISPE GAMP Good Practice Guide: IT Infrastructure Control and Compliance (second edition) is intended to provide comprehensive guidance on meeting regulatory expectations for compliant IT (information technology) infrastructure platforms, both traditional and cloud-based. The increasing prevalence of new technology has presented regulated companies with significant technological advantages as well as a changed compliance model.
The validated status of GxP* applications that are dependent upon an underlying IT infrastructure can be compromised if the IT infrastructure is not maintained in a demonstrable state of control and regulatory compliance. Data integrity can also be affected by problems related to IT infrastructure, leading to increased risks that can in turn affect product quality or patient safety.
The ISPE GAMP Good Practice Guide: IT Infrastructure Control and Compliance (Second Edition) applies a structured approach, including risk management, to the qualification, management, and control of IT infrastructure platforms supporting GxP-regulated applications. The Guide provides a scalable qualification framework that can be applied to different platform types, across both the physical and virtualized space, in order to determine the extent and scope of qualification efforts. The Guide also provides an overview of industry best practices for the design, qualification, and operation of an IT infrastructure, with emphasis on the qualification requirements of the major components.
The revision expands the scope of the Guide to include guidance on the emergence of cloud and virtualized technologies. Information has been added to reflect significant changes in the technologies that make up IT infrastructure, including:
The use of virtualization technologies that allow the sharing, combining, and maximization of resources
The use of cloud computing, including cloud-based infrastructure and three cloud-based service models: infrastructure as a service (IaaS), platform as a service (PaaS), and software as a service (SaaS)
The delivery of GxP applications “as a service”
Outsourcing and the increased use of third-party data centers
* One or a combination of GCP (good clinical practice), GMP (good manufacturing practice), GLP (good laboratory practice), or GDP (good distribution practice)—where “x” refers to clinical, manufacturing, laboratory, or distribution; often used for everything of interest for regulatory bodies. Source: ISPE Glossary (www.ispe.org/glossary)
A new ISPE Special Interest Group (SIG) has been formed under GAMP® to address the increasing use of cloud services. A conversation with Michael Os-burn, Head of Quality at Cornerstone OnDemand, and Judy Samardelis, IT Quality Director at Thermo Fisher...
Since its inception at the ISPE 2016 Annual Meeting & Expo, Women in Pharma® (WIP) has been rapidly growing. In the US and Europe, the society has held numerous Women in Pharma® events at local Affiliates, Chapters, and Annual Meetings & Expos, and it is now establishing a presence in Asia. On 27...