Information Security Policy. Supplier shall develop, publish, and implement information security policy documents. The information security policy shall state the purpose and scope of the policy, communicate management's commitment, describe management’s and workforce member's roles and responsibilities, and establish Supplier's approach to managing information security. The documents shall be reviewed at planned intervals or if significant changes occur to ensure the policies' adequacy and effectiveness.
Appears in 4 contracts
Samples: Purchase Order Terms, Purchase Order Terms, Purchase Order Terms
Information Security Policy. Supplier shall develop, publish, and implement information security policy documentsdocumentation. The information security policy shall state include the purpose and scope of the policy, communicate management's commitment, describe management’s and workforce member's roles and responsibilities, and establish Supplier's approach to managing information security. The policy documents shall be reviewed at planned intervals or if significant changes occur least annually and updated as needed. to ensure the policies' adequacy and effectiveness.
Appears in 1 contract
Samples: Participation Agreement