Common use of Secure Areas Clause in Contracts

Secure Areas. Contractor has a physical and environmental policy in place, with standards and guidelines that have been documented and obtained management approval, that is reviewed no less frequently than annually and is maintained to ensure its continuing suitability, adequacy and effectiveness; Contractor’s secure areas are protected by appropriate entry controls to ensure that only authorized personnel are allowed access; and Contractor’s physical protection and guidelines for working in secure areas have been adequately designed and applied. Equipment security Contractor’s equipment, and the equipment Contractor may utilize in its operations that is owned by a third party, is maintained to ensure its continued availability and integrity; and Contractor’s security measures have been applied to off-site equipment to address the risks of working outside the Contractor’s premises. Operations management Contractor’s operating procedures have been documented, maintained, and made available to all users who require them; Contractor controls changes to information processing facilities and systems; and Contractor has segregated duties and areas of responsibility to reduce opportunities for unauthorized or unintentional modification or misuse of Contractor’s assets. Third party service delivery management Security controls, service definitions and delivery levels included in Contractor’s third-party service delivery agreements are implemented, operated, and maintained by the third party; and The services, reports and records provided by third parties are regularly monitored, reviewed and audited by Contractor.

Secure Areas. Contractor has a physical and environmental policy in place, with standards and guidelines that have been documented documented, approved by Contractor management, reviewed at least annually, and obtained management approval, that is reviewed no less frequently than annually and is maintained to ensure its continuing suitability, adequacy and effectiveness; Contractor’s secure areas are protected by appropriate entry controls to ensure that only authorized personnel are allowed access; and Contractor’s physical protection and guidelines for working in secure areas have been adequately designed and applied. Equipment security Contractor’s equipment, and the equipment Contractor may utilize in its operations that is owned by a third party, is maintained to ensure its continued availability and integrity; and Contractor’s security measures have been applied to off-site equipment to address the risks of working outside the Contractor’s premises. Operations management Contractor’s operating procedures have been documented, maintained, and made available to all users who require them; Contractor controls changes to information processing facilities and systems; and Contractor has segregated duties and areas of responsibility to reduce opportunities for unauthorized or unintentional modification or misuse of Contractor’s assets. Third party service delivery management Security controls, service definitions and delivery levels included in Contractor’s third-party service delivery agreements are implemented, operated, and maintained by the third party; and The services, reports and records provided by third parties are regularly monitored, reviewed reviewed, and audited by Contractor.