Common use of Security Assessment Clause in Contracts

Security Assessment. 1. The State requires any entity or third-party Supplier Hosting Oklahoma Customer Data to submit to a State Certification and Accreditation Review process to assess initial security risk. Supplier submitted to the review and met the State’s minimum security standards at time the Contract was executed. Failure to maintain the State’s minimum security standards 2. Any Hosting entity change must be approved in writing prior to such change. To the extent Supplier requests a different sub-contractor than the third-party Hosting Supplier already approved by the State, the different sub-contractor is subject to the State’s approval. Supplier agrees not to migrate State’s data or otherwise utilize the different third-party Hosting Supplier in connection with key business functions that are Supplier’s obligations under the contract until the State approves the third-party Hosting Supplier’s State Certification and Accreditation Review, which approval shall not be unreasonably withheld or delayed. In the event the third-party Hosting Supplier does not meet the State’s requirements under the State Certification and Accreditation Review, Supplier acknowledges and agrees it will not utilize the third-party Supplier in connection with key business functions that are Supplier’s obligations under the contract, until such third party meets such requirements.

Security Assessment. 1. a. The State requires any entity or third-party Supplier Hosting vendor hosting Oklahoma Customer Data to submit to a State Certification and Accreditation Review process to assess initial security risk. Supplier Vendor submitted to the review and met the State’s minimum security standards at time the Contract was executed. Failure to maintain the State’s minimum security standardsstandards during the term of the Contract, including renewals, constitutes a material breach. 2. Any Hosting entity change must be approved in writing prior to such change. b. To the extent Supplier Vendor requests a different sub-contractor than the third-party Hosting Supplier hosting vendor already approved by the State, the different sub-contractor is subject to the State’s approval. Supplier Vendor agrees not to migrate State’s data or otherwise utilize the a different third-party Hosting Supplier hosting vendor in connection with key business functions that are SupplierVendor’s obligations under the contract Contract until the State approves the third-party Hosting Supplierhosting vendor’s State Certification and Accreditation Review, which approval shall not be unreasonably withheld or delayed. In the event the third-party Hosting Supplier hosting vendor does not meet the State’s requirements under the State Certification and Accreditation Review, Supplier Vendor acknowledges and agrees it will may not utilize the such third-party Supplier vendor in connection with key business functions that are SupplierVendor’s obligations under the contractContract, until such third party meets such requirements.

Security Assessment. 1. a. The State requires any entity or third-party Supplier Hosting vendor hosting Oklahoma Customer Data to submit to a State Certification and Accreditation Review process to assess initial security risk. Supplier Vendor submitted to the review and met the State’s minimum security standards at time the Contract was executed. Failure to maintain the State’s minimum security standardsstandards during the term of the contract, including renewals, constitutes a material breach. 2. Any Hosting entity change must be approved in writing prior to such change. b. To the extent Supplier Vendor requests a different sub-contractor than the third-party Hosting Supplier hosting vendor already approved by the State, the different sub-contractor is subject to the State’s approval. Supplier Vendor agrees not to migrate State’s data or otherwise utilize the different third-party Hosting Supplier hosting vendor in connection with key business functions that are SupplierVendor’s obligations under the contract until the State approves the third-party Hosting Supplierhosting vendor’s State Certification and Accreditation Review, which approval shall not be unreasonably withheld or delayed. In the event the third-party Hosting Supplier hosting vendor does not meet the State’s requirements under the State Certification and Accreditation Review, Supplier Vendor acknowledges and agrees it will not utilize the third-party Supplier vendor in connection with key business functions that are SupplierVendor’s obligations under the contract, until such third party meets such requirements.

Security Assessment. 1. a. The State requires any entity or third-party Supplier Hosting vendor hosting Oklahoma Customer Data to submit to a State Certification and Accreditation Review process to assess initial security risk. Supplier submitted to the review and met the State’s minimum security standards at time the Contract was executed. Failure to maintain the State’s minimum security standardsstandards during the term of the contract, including renewals, constitutes a material breach. 2. Any Hosting entity change must be approved in writing prior to such change. b. To the extent Supplier requests a different sub-contractor than the third-party Hosting Supplier hosting vendor already approved by the State, the different sub-contractor is subject to the State’s approval. Supplier agrees not to migrate State’s data or otherwise utilize the different third-party Hosting Supplier hosting vendor in connection with key business functions that are Supplier’s obligations under the contract until the State approves the third-party Hosting Supplierhosting vendor’s State Certification and Accreditation Review, which approval shall not be unreasonably withheld or delayed. In the event the third-party Hosting Supplier hosting vendor does not meet the State’s requirements under the State Certification and Accreditation Review, Supplier acknowledges and agrees it will not utilize the third-party Supplier vendor in connection with key business functions that are Supplier’s obligations under the contract, until such third party meets such requirements.

Security Assessment. 1. The State requires any entity or third-party Supplier Hosting Oklahoma Customer Data to submit to a State Certification and Accreditation Review process to assess initial security risk. Supplier submitted to the review and met the State’s minimum security standards at time the Contract was executed. Failure to maintain the State’s minimum security standards 2. Any Hosting entity change must be approved in writing prior to such change. To the extent Supplier requests a different sub-contractor than the third-party Hosting Supplier already approved by the State, the different sub-contractor is subject to the State’s approval. Supplier agrees not to migrate State’s data or otherwise utilize the different third-party Hosting Supplier in connection with key business functions that are Supplier’s obligations Supplier’sobligations under the contract until the State approves the third-party Hosting Supplier’s State Certification and Accreditation Review, which approval shall not be unreasonably withheld or delayed. In the event the third-party Hosting Supplier does not meet the State’s requirements under the State Certification and Accreditation Review, Supplier acknowledges and agrees it will not utilize the third-party Supplier in connection with key withkey business functions that are Supplier’s obligations under the contract, until such third party meets such requirements.