Common use of Security Administrator and Authorized Users Clause in Contracts

Security Administrator and Authorized Users. Grantee shall: 1. Designate a Security Administrator and a back-up Security Administrator. The Security Administrator is required to implement and maintain a system for management of user accounts/user roles to ensure that all the CMBHS user accounts are current. 2. Have a security policy that ensures adequate system security and protection of confidential information. 3. Notify the CMBHS Help-desk within ten (10) business days of any change to the designated Security Administrator or the back-up Security Administrator. Grantee will: i. Ensure that access to CMBHS is restricted to only currently authorized users. ii. Within 24 hours, remove access to users who are no longer authorized to have access to secure data in CMBHS. iii. Maintain the CMBHS Authorized Users List which includes former and current Grantee’s employees, contracted labor, subcontractors or any other users authorized to have access to secure data in CMBHS. The CMBHS Authorized Users List shall document whose authority has been added and terminated; and the date the authority was added and terminated. 4. Submit the CMBHS Security Attestation Form and the CMBHS Authorized Users List as stated in Attachment A, to the following e-mail address: XxxxxxxxxXxxxx.Xxxxxxxxx@xxxx.xxxxx.xx.

Security Administrator and Authorized Users. Grantee shall: 1. Designate designate a Security Administrator and a back-up Security Administrator. The Security Administrator is required to implement and maintain a system for management of user accounts/user roles to ensure that all the CMBHS user accounts are current. 2. Have have a security policy that ensures adequate system security and protection of confidential information. 3. Notify notify the CMBHS Help-desk within ten (10) business days of any change to the designated Security Administrator or the back-up Security Administrator. Grantee will: i. Ensure ensure that access to CMBHS is restricted to only currently authorized users. ii. Within within 24 hours, remove access to users who are no longer authorized to have access to secure data in CMBHS. iii. Maintain maintain the CMBHS Authorized Users List which includes former and current Grantee’s employees, contracted labor, subcontractors or any other users authorized to have access to secure data in CMBHS. The CMBHS Authorized Users List shall document whose authority has been added and terminated; and the date the authority was added and terminated. 4. Submit submit the CMBHS Security Attestation Form and the CMBHS Authorized Users List as stated in Attachment A, to the following e-mail address: XxxxxxxxxXxxxx.Xxxxxxxxx@xxxx.xxxxx.xx.