Audit and Testing Sample Clauses

Audit and Testing. 4.1 The Contractor shall conduct tests of the processes and countermeasures contained in the Security Plan ("Security Tests") on an annual basis or as otherwise agreed by the Parties. The date, timing, content and conduct of such Security Tests shall be agreed in advance with the Authority. 4.2 The Authority shall be entitled to send a representative to witness the conduct of the Security Tests. The Contractor shall provide the Authority with the results of such tests (in a form approved by the Authority in advance) as soon as practicable after completion of each Security Test. 4.3 Without prejudice to any other right of audit or access granted to the Authority pursuant to this Contract, the Authority shall be entitled at any time and without giving notice to the Contractor to carry out such tests (including penetration tests) as it may deem necessary in relation to the Security Plan and the Contractor's compliance with and implementation of the Security Plan. The Authority may notify the Contractor of the results of such tests after completion of each such test. Security Tests shall be designed and implemented so as to minimise the impact on the delivery Services. If such tests impact adversely on its ability to deliver the Services to the agreed Service Levels, the Contractor shall be granted relief against any resultant under-performance for the period of the tests. 4.4 Where any Security Test carried out pursuant to paragraphs 4.2 or 4.3 above reveals any actual or potential security failure or weaknesses, the Contractor shall promptly notify the Authority of any changes to the Security Plan (and the implementation thereof) which the Contractor proposes to make in order to correct such failure or weakness. Subject to the Authority's approval in accordance with paragraph 3.12, the Contractor shall implement such changes to the Security Plan in accordance with the timetable agreed with the Authority or, otherwise, as soon as reasonably possible. For the avoidance of doubt, where the change to the Security Plan to address a non-compliance with the Security Policy or security requirements, the change to the Security Plan shall be at no additional cost to the Authority. For the purposes of this paragraph 4, a weakness means a vulnerability in security and a potential security failure means a possible breach of the Security Plan or security requirements.
Sample 1Sample 2Sample 3See All (235)
AutoNDA by SimpleDocs
Audit and Testing. The Contractor shall conduct tests of the processes and countermeasures contained in the Security Plan ("Security Tests") on an annual basis or as otherwise agreed by the Parties. The date, timing, content and conduct of such Security Tests shall be agreed in advance with the Authority.
Sample 1Sample 2Sample 3See All (26)
Audit and Testing. 4.1 The Provider shall conduct tests of the processes and countermeasures contained in the Security Plan ("Security Tests") on an annual basis or as otherwise agreed by the Parties. The date, timing, content and conduct of such Security Tests shall be agreed in advance with the Authority. 4.2 The Authority shall be entitled to send a representative to witness the conduct of the Security Tests. The Provider shall provide the Authority with the results of such tests (in a form approved by the Authority in advance) as soon as practicable after completion of each Security Test. 4.3 Where any Security Test carried out pursuant to paragraphs 4.2 above reveals any actual or potential security failure or weaknesses, the Provider shall promptly notify the Authority of any changes to the Security Plan (and the implementation thereof) which the Provider proposes to make in order to correct such failure or weakness. Subject to the Authority's approval in accordance with paragraph 3.12, the Provider shall implement such changes to the Security Plan in accordance with the timetable agreed with the Authority or, otherwise, as soon as reasonably possible. For the avoidance of doubt, where the change to the Security Plan to address a non- compliance with the Security Policy or security requirements, the change to the Security Plan shall be at no additional cost to the Authority. For the purposes of this paragraph 4, a weakness means a vulnerability in security and a potential security failure means a possible breach of the Security Plan or security requirements.
Sample 1Sample 2Sample 3See All (9)
Audit and Testing. 4.1 The Provider shall conduct tests of the processes and countermeasures contained in the Security Plan ("Security Tests") on an annual basis or as otherwise agreed by the Parties. The date, timing, content and conduct of such Security Tests shall be agreed in advance with UK SBS. 4.2 UK SBS shall be entitled to send a representative to witness the conduct of the Security Tests. The Provider shall provide UK SBS with the results of such tests (in a form approved by UK SBS in advance) as soon as practicable after completion of each Security Test. 4.3 Where any Security Test carried out pursuant to paragraphs 4.2 above reveals any actual or potential security failure or weaknesses, the Provider shall promptly notify UK SBS of any changes to the Security Plan (and the implementation thereof) which the Provider proposes to make in order to correct such failure or weakness. Subject to UK SBS's approval in accordance with paragraph 3.12, the Provider shall implement such changes to the Security Plan in accordance with the timetable agreed with UK SBS or, otherwise, as soon as reasonably possible. For the avoidance of doubt, where the change to the Security Plan to address a non-compliance with the Security Policy or security requirements, the change to the Security Plan shall be at no additional cost to UK SBS. For the purposes of this paragraph 4, a weakness means a vulnerability in security and a potential security failure means a possible breach of the Security Plan or security requirements.
Sample 1Sample 2Sample 3See All (7)
Audit and Testing. Vendor will complete one of the following audits at least annually and immediately after any actual or reasonably suspected Security Incident: SOC 2 Type II, SOC for Cybersecurity, or an accepted Higher Education Cloud Vendor Assessment Tool (xxxxx://xxxxxxx.xxxxxxxx.xxx/resources/2020/4/higher-education-community-vendor-assessment-toolkit). Evidence must be provided to the University prior to this Agreement and at least annually thereafter. Prior to this Agreement, and at regular intervals of no less than annually and whenever a change is made which may impact the confidentiality, integrity, or availability of University Data, and in accordance with industry standards and best practices, Vendor will, at its expense, perform scans for unauthorized applications, services, code and system vulnerabilities on the networks and systems used to perform services related to this Agreement (“Security Tests”). An initial report must be provided to the University prior to this Agreement. Vendor will provide the University the reports or other documentation resulting from the audits, certifications, scans and tests within five (5) business days of Vendor' generation or receipt of such results. If any critical finding is identified, Vendor agrees to notify the University and remediate the critical finding within thirty (30) days. Any critical finding not remediated within thirty (30) days must be reported to University at xxxxxxxx@xxxxxxx.xxx. All other findings must be remediated within ninety (90) days. At University’s request, Vendor will promptly provide written attestation that required Security Tests, independent audits, and/or a DPIA have been conducted either by a qualified Representative or by a third party in the prior twelve months. The University may require the Vendor to perform additional audits and tests, the results of which will be provided to the University within five (5) business days of the Vendor’s receipt of such results. Vendor agrees to take reasonable steps to assist University in maintaining the accuracy of such University Data under the control of Vendor, including synchronizing relevant Systems, databases, or applications, as deemed necessary by University. The University reserves the right to annual, at a minimum, review of: Vendor’s access reports related to access to University Data; Vendor’s patch management process, schedules, and logs; findings of vulnerability scans and/or penetration tests of Vendor systems; and Vendor development st...
Sample 1Sample 2See All (7)
Audit and Testing. 5.1 The Contractor shall conduct tests of the processes and countermeasures contained in the Security Plan ("Security Tests") on an annual basis or as otherwise agreed by the Parties. The date, timing, content and conduct of such Security Tests shall be agreed in advance with the Authority. 5.2 The Contractor shall provide the Authority with a summary of results, or onsite access to the results of such tests (in a form agreed between the Contractor and the Authority in advance) on reasonable request. 5.3 On the Authority’s reasonable request, the Contractor shall carry out such tests (including penetration tests) as the Authority may reasonably require and which are agreed in writing by the Contractor in relation to the Security Plan. Security Tests shall be designed and implemented so as to minimise the impact on the delivery of the Goods and/or Services. 5.4 Where any Security Test carried out pursuant to paragraphs 5.2 or 5.3 above reveals any actual or potential security failure or weaknesses, the Contractor shall promptly notify the Authority of any changes affecting the Authority to the Security Plan (and the implementation thereof) which the Contractor proposes to make in order to correct such failure or weakness. Subject to the Authority's approval in accordance with paragraph 4.3, the Contractor shall implement such changes to the Security Plan in accordance with the timetable agreed with the Authority or, otherwise, as soon as reasonably possible. For the avoidance of doubt, where the change to the Security Plan to address a non-compliance with the HMG Security Policy Framework or security requirements, the change to the Security Plan shall be at no additional cost to the Authority. For the purposes of this paragraph, a weakness means a vulnerability in security and a potential security failure means a possible breach of the Security Plan or security requirements.
Sample 1Sample 2
Audit and Testing. 7.1 The Cyber Security Management Plan shall provide for the Supplier to: 7.1.1 conduct compliance audits of the ISMS as per the ISO/IEC 27001 standard certification requirements; 7.1.2 conduct compliance tests of the Cyber Security Management Plan implementation six (6) months after the Commencement Date and then on a quarterly basis; 7.1.3 as appropriate to the performance of its obligations under this Agreement conduct vulnerability scans, as required in the CSIA Document Policy Set; 7.1.4 conduct tests including penetration tests of its Cyber Security Management Plan using independent testers and in line with Good Industry Practice, as required in the CSIA Document Policy Set; 7.1.5 ensure an Information Security Health Check (ISHC), as required in the CSIA Policy Document Set, is performed at least annually by an approved and reputable external CREST (Council for Registered Ethical Security Testers) service provider and that a report detailing any remediation required is presented to the Customer within fifteen (15) working days of the delivery of the report to the Supplier, for review and agreement on remediation. Once agreed, a remediation plan (containing a prioritised road map containing issues, their impact or severity, proposed fixes, target completion date and ownership) must be presented to the Customer within ten (10) for approval. The Supplier shall implement the agreed remediation plan and conduct relevant testing to ensure the remediation has been implemented correctly and has addressed the issues identified in the ISHC; 7.1.6 agree the date, timing, content and conduct of such tests in advance with the Customer; 7.1.7 maintain evidence of compliance with this Schedule and the CSIA Policy Document Set and provide this evidence in accordance with this Paragraph 7 or as reasonably requested by the Customer; 7.1.8 where applicable assist with forensic investigations as required by the Customer; 7.1.9 where applicable assist with such additional ISHCs, including applications security testing, physical security reviews, wireless testing and vulnerability scans as required by the Customer; 7.1.10 allow the Customer to send a representative to witness the conduct of the ISHC and the testing conducted in accordance with this Paragraph 7. The Supplier shall provide the Customer with the results of such tests (in a form approved by the Customer in advance) as soon as practicable after completion of each such test; 7.1.11 subject to Paragraph 7, on a...
Sample 1
AutoNDA by SimpleDocs
Audit and Testing. The Authority should set out a description of the audit and testing process to be used for the security requirements.
Sample 1
Audit and Testing. 4.1. The SERVICE PROVIDER shall conduct tests of the processes and countermeasures contained in the Security Plan ("Security Tests") on an annual basis or as otherwise agreed by the parties. The date, timing, content and conduct of such Security Tests shall be agreed in advance with the Customer. 4.2. The Customer shall be entitled to send a representative to witness the conduct of the Security Tests. The SERVICE PROVIDER shall provide the Customer with the results of such tests (in a form approved by the Customer in advance) as soon as practicable after completion of each Security Test.
Sample 1

Related to Audit and Testing

  • Inspection and Testing Each Constructing Entity shall cause inspection and testing of the Interconnection Facilities that it constructs in accordance with the provisions of this section. The Construction Parties acknowledge and agree that inspection and testing of facilities may be undertaken as facilities are completed and need not await completion of all of the facilities that a Constructing Entity is building.

  • Inspections and Tests 26.1 The Supplier shall at its own expense and at no cost to the Procuring Entity carry out all such tests and/or inspections of the Goods and Related Services as are specified in the SCC. 26.2 The inspections and tests may be conducted on the premises of the Supplier or its Subcontractor, at point of delivery, and/or at the Goods' final destination, or in another place in Kenya as specified in the SCC. Subject to GCC Sub-Clause 26.3, if conducted on the premises of the Supplier or its Subcontractor, all reasonable facilities and assistance, including access to drawings and production data, shall be furnished to the inspectors at no charge to the Procuring Entity. 26.3 The Procuring Entity or its designated representative shall be entitled to attend the tests and/or inspections referred to in GCC Sub-Clause 26.2, provided that the Procuring Entity bear all of its own costs and expenses incurred in connection with such attendance including, but not limited to, all travelling and board and lodging expenses. 26.4 Whenever the Supplier is ready to carry out any such test and inspection, it shall give a reasonable advance notice, including the place and time, to the Procuring Entity. The Supplier shall obtain from any relevant third party or manufacturer any necessary permission or consent to enable the Procuring Entity or its designated representative to attend the test and/or inspection. 26.5 The Procuring Entity may require the Supplier to carry out any test and/or inspection not required by the Contract but deemed necessary to verify that the characteristics and performance of the Goods comply with the technical specifications codes and standards under the Contract, provided that the Supplier's reasonable costs and expenses incurred in the carrying out of such test and/or inspection shall be added to the Contract Price. Further, if such test and/or inspection impedes the progress of manufacturing and/or the Supplier's performance of its other obligations under the Contract, due allowance will be made in respect of the Delivery Dates and Completion Dates and the other obligations so affected. 26.6 The Supplier shall provide the Procuring Entity with a report of the results of any such test and/or inspection. 26.7 The Procuring Entity may reject any Goods or any part thereof that fail to pass any test and/or inspection or do not conform to the specifications. The Supplier shall either rectify or replace such rejected Goods or parts thereof or make alterations necessary to meet the specifications at no cost to the Procuring Entity, and shall repeat the test and/or inspection, at no cost to the Procuring Entity, upon giving a notice pursuant to GCC Sub- Clause 26.4. 26.8 The Supplier agrees that neither the execution of a test and/or inspection of the Goods or any part thereof, nor the attendance by the Procuring Entity or its representative, nor the issue of any report pursuant to GCC Sub-Clause 26.6, shall release the Supplier from any warranties or other obligations under the Contract.

  • Inspection and Tests 3.8.1 The Procuring entity or its representative shall have the right to inspect and/or to test the goods to confirm their conformity to the Contract specifications. The Procuring entity shall notify the tenderer in writing in a timely manner, of the identity of any representatives retained for these purposes. 3.8.2 The inspections and tests may be conducted in the premises of the tenderer or its subcontractor(s), at point of delivery, and/or at the Goods’ final destination If conducted on the premises of the tenderer or its subcontractor(s), all reasonable facilities and assistance, including access to drawings and production data, shall be furnished to the inspectors at no charge to the Procuring entity. 3.8.3 Should any inspected or tested goods fail to conform to the Specifications, the Procuring entity may reject the equipment, and the tenderer shall either replace the rejected equipment or make alterations necessary to make specification requirements free of costs to the Procuring entity. 3.8.4 The Procuring entity’s right to inspect, test and where necessary, reject the goods after the Goods’ arrival shall in no way be limited or waived by reason of the equipment having previously been inspected, tested and passed by the Procuring entity or its representative prior to the equipment delivery. 3.8.5 Nothing in paragraph 3.8 shall in any way release the tenderer from any warranty or other obligations under this Contract.

  • MEASUREMENT AND VERIFICATION The goal of this task is to report the benefits resulting from this project by performing measurement and verification (M&V) of fossil fuel consumption and associated GHG reduction. • Enter into agreement with M&V subcontractor per Task 1.9 • Coordinate site visits with the M&V subcontractor at the demonstration site(s) • Develop M&V protocol for pre-installation measurements (and calculations): o Electric, natural gas and/or other fossil fuel consumption and GHG emissions (use appropriate emissions factor from Attachment 8 of the grant solicitation) of the equipment/process/system(s)/sub-system(s) that are to be upgraded and/or replaced and/or modified. o Ensure installation of sub-metering equipment and data loggers for pre/post data analysis. • Prepare and provide a detailed M&V Plan for each project demonstration site to include but not be limited to: o A description of the monitoring equipment and instrumentation which will be used. o A description of the key input parameters and output metrics which will be measured. o A description of the M&V protocol and analysis methods to be employed. o A description of the independent, third-party M&V services to be employed, if applicable. • Perform three months (or shorter period as approved in writing by the CAM) of pre- installation measurements (and calculations) based on the M&V protocol for pre- installation. • Prepare and provide a Pre-Installation M&V Findings Report for the demonstration site that includes M&V protocol, pre-install measurements (and calculations), analysis, and results performed in this task. • Develop M&V protocol for post-installation measurements (and calculations) of: o Electric, natural gas and/or other fossil fuel consumption and GHG emissions (use appropriate emissions factor from Attachment 8 of the grant solicitation) of the equipment/process/system(s)/sub-system(s) that will be upgraded and/or replaced and/or modified • Perform 12 months or two seasons, for seasonal facilities, (or shorter period as approved in writing by the CAM) of post-installation measurements based on M&V protocol for post-installation. • Provide a summary of post-installation M&V progress in Progress Report(s) (see subtask 1.5) which shall include but not be limited to:

  • OIG INSPECTION, AUDIT, AND REVIEW RIGHTS ‌ In addition to any other rights OIG may have by statute, regulation, or contract, OIG or its duly authorized representative(s) may conduct interviews, examine or request copies of Xxxxxx’x books, records, and other documents and supporting materials and/or conduct on-site reviews of any of Xxxxxx’x locations for the purpose of verifying and evaluating: (a) Xxxxxx’x compliance with the terms of this IA and (b) Xxxxxx’x compliance with the requirements of the Federal health care programs. The documentation described above shall be made available by Xxxxxx to OIG or its duly authorized representative(s) at all reasonable times for inspection, audit, and/or reproduction. Furthermore, for purposes of this provision, OIG or its duly authorized representative(s) may interview Xxxxxx and any of Xxxxxx’x employees or contractors who consent to be interviewed at the individual’s place of business during normal business hours or at such other place and time as may be mutually agreed upon between the individual and OIG. Xxxxxx shall assist OIG or its duly authorized representative(s) in contacting and arranging interviews with such individuals upon OIG’s request. Xxxxxx’x employees and contractors may elect to be interviewed with or without a representative of Xxxxxx present.

  • Financial testing The financial covenants set out in Clause 20.2 (Financial condition) shall be tested by reference to each of the financial statements and/or each Compliance Certificate delivered pursuant to Clause 19.2 (Compliance Certificate).

  • Inspection/Testing In order to assess Supplier’s work quality and/or compliance with this Order, upon reasonable notice by Buyer: (a) all goods, materials and services related to the items purchased hereunder, including, raw materials, components, assemblies, work in process, tools and end products shall be subject to inspection and testing by Buyer, its customer, representative or regulatory authorities at all places, including sites where the goods are made or located or the services are performed, whether at Supplier’s premises or elsewhere; and (b) all of Supplier’s facilities, books and records relating to this Order shall be subject to inspection by Buyer or its designee. If specific Buyer and/or Buyer’s customer tests, inspection and/or witness points are included in this Order, the goods shall not be shipped without an inspector’s release or a written waiver of test/inspection/witness with respect to each such point; however, Buyer shall not be permitted to unreasonably delay shipment; and Supplier shall notify Buyer in writing at least twenty (20) days prior to each of Supplier’s scheduled final and, if applicable, intermediate test/inspection/witness points. Supplier agrees to cooperate with such/audit inspection including, completing and returning questionnaires and making available its knowledgeable representatives. Buyer’s failure to inspect or test goods, materials or services or Buyer’s failure to reject or detect defects by inspection or testing shall not relieve Supplier from its warranty obligations or any of its other obligations or responsibilities under this Order. Supplier agrees to provide small business as well as minority and/or women owned business utilization and demographic data upon request.

  • Random Testing Notwithstanding any provisions of the Collective Agreement or any special agreements appended thereto, section 4.6 of the Canadian Model will not be applied by agreement. If applied to a worker dispatched by the Union, it will be applied or deemed to be applied unilaterally by the Employer. The Union retains the right to grieve the legality of any imposition of random testing in accordance with the Grievance Procedure set out in this Collective Agreement.

  • ODUF Testing 6.6.1 Upon request from TWTC, AT&T shall send ODUF test files to TWTC. The Parties agree to review and discuss the ODUF file content and/or format. For testing of usage results, AT&T shall request that TWTC set up a production (live) file. The live test may consist of TWTC’s employees making test calls for the types of services TWTC requests on ODUF. These test calls are logged by TWTC, and the logs are provided to AT&T. These logs will be used to verify the files. Testing will be completed within thirty (30) days from the date on which the initial test file was sent.

  • Sampling and Analysis The Seller has sole responsibility for quality control of the coal and shall forward its “as loaded” quality to the Buyer as soon as possible. The sampling and analysis of the coal delivered hereunder shall be performed by Buyer and the results thereof shall be accepted and used for the quality and characteristics of the coal delivered under this Agreement. All analyses shall be made in Buyer’s laboratory at Buyer’s expense in accordance with ASTM standards where applicable, or using standards mutually acceptable to both parties. Samples for analyses shall be taken by any ASTM standards or standards mutually acceptable to both parties, and may be composited and shall be taken with a frequency and regularity sufficient to provide reasonably accurate representative samples of the deliveries made hereunder. Seller represents that it is familiar with Buyer’s sampling and analysis practices, and finds them to be acceptable. Buyer shall notify Seller in writing of any significant changes in Buyer’s sampling and analysis practices. Any such changes in Buyer’s sampling and analysis practices shall, except for ASTM or mutually agreeable changes in practices, provide for no less accuracy than the sampling and analysis practices existing at the time of the execution of this Agreement, unless the Parties otherwise mutually agree. (1) part shall be used for analysis by Buyer; one (l) part shall be used by Buyer as a check sample, if Buyer in its sole judgment determines it is necessary; one (1) part shall be retained by Buyer (LG&E) until the twenty-fifth (25th) of the month following the month of unloading (the “LG&E Disposal Date”) or Buyer (KU) until thirty (30) days after the sample is taken (the “KU Disposal Date”), the LG&E Disposal Date and the KU Disposal Date are collectively the “Disposal Date”), and shall be delivered to Seller for analysis if Seller so requests before the Disposal Date; and one part (“Referee Sample”) shall be retained by Buyer until the Disposal Date. Seller shall be given copies of all analyses made by Buyer by the tenth (10th) business day of the month following the month of unloading. Seller, on reasonable notice to Buyer shall have the right to have a representative present to observe the sampling and analyses performed by Buyer. Unless Seller requests a Referee Sample analysis before the Disposal Date, Buyer’s analysis shall be used to determine the quality of the coal delivered hereunder. The Monthly Weighted Averages shall be determined by utilizing the individual shipment analyses. If any dispute arises before the Disposal Date, the Referee Sample retained by Buyer shall be submitted for analysis to an independent commercial testing laboratory (“Independent Lab”) mutually chosen by Buyer and Seller. For each coal quality specification in question, a dispute shall be deemed not to exist and Buyer’s analysis shall prevail and the analysis of the Independent Lab shall be disregarded if the analysis of the Independent Lab differs from the analysis of Buyer by an amount equal to or less than: (i) 0.50% moisture (ii) 0.50% ash on a dry basis (iii) 100 Btu/lb. on a dry basis (iv) 0.10% sulfur on a dry basis. For each coal quality specification in question, if the analysis of the Independent Lab differs from the analysis of Buyer by an amount more than the amounts listed above, then the analysis of the Independent Lab shall prevail and Buyer’s analysis shall be disregarded. The cost of the analysis made by the Independent Lab shall be borne by Seller to the extent that Buyer’s analysis prevails and by Buyer to the extent that the analysis of the Independent Lab prevails.

Draft better contracts in just 5 minutes Get the weekly Law Insider newsletter packed with expert videos, webinars, ebooks, and more!