Certifications and Attestations. ServiceNow shall establish and maintain sufficient controls to meet the objectives stated in ISO 27001, ISO 27018, SSAE 18 / SOC 1 and SOC 2 Type 2 (or equivalent standards) (collectively, the “Standards”) for the information security management system supporting the Subscription Service. At least once per calendar year, ServiceNow shall obtain an assessment against such Standards by an independent third-party auditor.
Appears in 7 contracts
Samples: Subscription Service Agreement, Data Processing Agreement, Subscription Service Agreement
Certifications and Attestations. ServiceNow shall establish and maintain sufficient controls to meet the objectives stated in ISO 27001, ISO 27018, SSAE 18 / SOC 1 and SOC 2 Type 2 (or equivalent standards) (collectively, the “Standards”) for the information security management system supporting the Subscription Service. At least once per calendar year, ServiceNow shall obtain an assessment against such Standards by an independent third-third- party auditor.
Appears in 2 contracts
Samples: Ordering Agreement, Ordering Agreement
Certifications and Attestations. ServiceNow shall establish and maintain sufficient controls to meet certification and attestation for the objectives stated in ISO 27001, ISO 27018, SSAE 18 / SOC 1 and SOC 2 Type 2 (or equivalent standards) (collectively, the “Standards”) for the information security management system Security Program supporting the Subscription Service. At least once per calendar year, ServiceNow shall obtain an assessment against such Standards standards and audit methodologies by an independent third-party auditor.auditor and make the executive reports available to the Customer
Appears in 1 contract
Certifications and Attestations. ServiceNow shall establish and maintain sufficient controls to meet the objectives stated in ISO 27001, ISO 27018, 27001 and SSAE 18 16 / SOC 1 and SOC 2 Type 2 (or equivalent standards) (collectively, the “Standards”) for the information security management system supporting the Subscription Service. At least once per calendar year, ServiceNow shall obtain perform an assessment against such Standards by an independent third-party auditor(“Assessment”). Upon Customer’s written request, which shall be no more than once per calendar year, ServiceNow shall provide a summary of the Assessment(s) to Customer. Assessments shall be Confidential Information of ServiceNow.
Appears in 1 contract
Samples: Carahsoft Rider to Manufacturer End User License Agreements
Certifications and Attestations. ServiceNow shall establish and maintain sufficient controls to meet certification and attestation for the objectives stated in ISO 27001, ISO 27018, SSAE 18 / SOC 1 and SOC 2 Type 2 (or equivalent standards) (collectively, the “Standards”) for the information security management system Security Program supporting the Subscription Service. At least once per calendar year, ServiceNow shall obtain an assessment against such Standards standards and audit methodologies by an independent third-party auditorauditor and make the executive reports available to the Customer.
Appears in 1 contract
