Common use of Content of the Security Management Plan Clause in Contracts

Content of the Security Management Plan. 3.3.1 The Security Management Plan will set out the security measures to be implemented and maintained by the Supplier in relation to all aspects of the Services and all processes associated with the delivery of the Services and shall at all times comply with and specify security measures and procedures which are sufficient to ensure that the Services comply with the provisions of this schedule (including the principles set out in paragraph 2.2); 3.3.2 The Security Management Plan (including the draft version) should also set out the plans for transiting all security arrangements and responsibilities from those in place at the Commencement Date to those incorporated in the Supplier‟s ISMS at the date set out in the Implementation Plan for the Supplier to meet the full obligations of the security requirements set out in paragraph 2.5 of the Order Form. 3.3.3 The Security Management Plan will be structured in accordance with ISO/IEC27001 and ISO/IEC27002 principles, cross- referencing if necessary to other schedules of this Contract which cover specific areas included within that standard. 3.3.4 The Security Management Plan shall be written in plain English in language which is readily comprehensible to the staff of the Supplier and the Customer engaged in the Services and shall only reference documents which are in the possession of the Customer or whose location is otherwise specified in this schedule.

Content of the Security Management Plan. 3.3.1 The Security Management Plan will set out the security measures to be implemented and maintained by the Supplier in relation to all aspects of the Services and all processes associated with the delivery of the Services and shall at all times comply with and specify security measures and procedures which are sufficient to ensure that the Services comply with the provisions of this schedule (including the principles set out in paragraph 2.22.1); 3.3.2 The Security Management Plan (including the draft version) should also set out the plans for transiting all security arrangements and responsibilities from those in place at the Commencement Date to those incorporated in the Supplier‟s Supplier’s ISMS at the date set out in the Implementation Plan for the Supplier to meet the full obligations of the security requirements set out in paragraph 2.5 of the Order Form. 3.3.3 The Security Management Plan will be structured in accordance with ISO/IEC27001 IEC 27001 and ISO/IEC27002 principlesIEC 27002, cross- cross-referencing if necessary to other schedules of this Contract which cover specific areas included within that standard. 3.3.4 The Security Management Plan shall be written in plain English in language which is readily comprehensible to the staff of the Supplier and the Customer engaged in the Services and shall only reference documents which are in the possession of the Customer or whose location is otherwise specified in this schedule.

Content of the Security Management Plan. 3.3.1 The Security Management Plan will set out the security measures to be implemented and maintained by the Supplier in relation to all aspects of the Services and all processes associated with the delivery of the Services and shall at all times comply with and specify security measures and procedures which are sufficient to ensure that the Services comply with the provisions of this schedule (including the principles set out in paragraph 2.2); 3.3.2 The Security Management Plan (including the draft version) should also set out the plans for transiting all security arrangements and responsibilities from those in place at the Commencement Date to those incorporated in the Supplier‟s Supplier’s ISMS at the date set out in the Implementation Plan for the Supplier to meet the full obligations of the security requirements set out in paragraph 2.5 of the Order Form. 3.3.3 The Security Management Plan will be structured in accordance with ISO/IEC27001 and ISO/IEC27002 principles, cross- referencing if necessary to other schedules of this Contract which cover specific areas included within that standard. 3.3.4 The Security Management Plan shall be written in plain English in language which is readily comprehensible to the staff of the Supplier and the Customer engaged in the Services and shall only reference documents which are in the possession of the Customer or whose location is otherwise specified in this schedule.

Content of the Security Management Plan. 3.3.1 The Security Management Plan will set out the security measures to be implemented and maintained by the Supplier in relation to all aspects of the Services and all processes associated with the delivery of the Services and shall at all times comply with and specify security measures and procedures which are sufficient to ensure that the Services comply with the provisions of this schedule (including the principles set out in paragraph 2.2); 3.3.2 The Security Management Plan (including the draft version) should also set out the plans for transiting all security arrangements and responsibilities from those in place at the Commencement Date to those incorporated in the Supplier‟s ISMS at the date set out in the Implementation Plan for the Supplier to meet the full obligations of the security requirements set out in paragraph 2.5 of the Order Form. 3.3.3 The Security Management Plan will be structured in accordance with ISO/IEC27001 and ISO/IEC27002 principles, cross- cross-referencing if necessary to other schedules of this Contract which cover specific areas included within that standard. 3.3.4 The Security Management Plan shall be written in plain English in language which is readily comprehensible to the staff of the Supplier and the Customer engaged in the Services and shall only reference documents which are in the possession of the Customer or whose location is otherwise specified in this schedule.

Content of the Security Management Plan. 3.3.1 The Security Management Plan will set out the security measures to be implemented and maintained by the Supplier in relation to all aspects of the Services and all processes associated with the delivery of the Services and shall at all times comply with and specify security measures and procedures which are sufficient to ensure that the Services comply with the provisions of this schedule (including the principles set out in paragraph 2.22.1); 3.3.2 The Security Management Plan (including the draft version) should also set out the plans for transiting all security arrangements and responsibilities from those in place at the Commencement Date to those incorporated in the Supplier‟s ISMS at the date set out in the Implementation Plan for the Supplier to meet the full obligations of the security requirements set out in paragraph 2.5 of the Order Form. 3.3.3 The Security Management Plan will be structured in accordance with ISO/IEC27001 IEC 27001 and ISO/IEC27002 principlesIEC 27002, cross- cross-referencing if necessary to other schedules of this Contract which cover specific areas included within that standard. 3.3.4 The Security Management Plan shall be written in plain English in language which is readily comprehensible to the staff of the Supplier and the Customer engaged in the Services and shall only reference documents which are in the possession of the Customer or whose location is otherwise specified in this schedule.