Security Controls Testing Sample Clauses

Security Controls Testing. Transfer Agent shall, on approximately an annual basis, engage an independent external party to conduct periodic reviews of Transfer Agent’s information security practices. Transfer Agent shall have a process to review and evaluate high risk findings resulting from this testing.
Sample 1Sample 2Sample 3See All (95)
AutoNDA by SimpleDocs
Security Controls Testing. State Street shall, on approximately an annual basis, engage an independent external party to conduct periodic reviews of State Street’s information security practices. State Street shall have a process to review and evaluate high risk findings resulting from this testing.
Sample 1Sample 2Sample 3See All (19)
Security Controls Testing. DST shall, on approximately an annual basis, engage an independent external party to conduct periodic reviews of DST’s information security practices. DST shall have a process to review and evaluate high risk findings resulting from this testing.
Sample 1Sample 2Sample 3See All (4)
Security Controls Testing. X. X. Xxxxxx shall regularly test its environment for potential security flaws, and perform vulnerability scanning at least quarterly and regular testing. X. X. Xxxxxx shall, on at least an annual basis and at its own expense, engage an independent, accredited external party or internal team to conduct reviews of X. X. Xxxxxx’x information security practices, including but not limited to conducting a penetration test on its systems having access to or holding or containing MFS Data consistent with its internal vulnerability management practices. If such reviews and tests identify a weakness or vulnerability that would materially adversely impact X.X. Xxxxxx’x ability to (i) perform its obligations under the Agreement, or (ii) comply with applicable laws in connection with the Agreement, X. X. Xxxxxx shall, within a reasonable time, provide MFS with high-level information about such impact to MFS and its remediation plan. Notwithstanding the foregoing, if the penetration testing reveals any critical or high vulnerabilities, X. X. Xxxxxx shall undertake remediation efforts to address such vulnerabilities in accordance with its internal policies.
Sample 1
Security Controls Testing. Contractor shall conduct, at least annually, reviews of security practices against various standards, such as SOC 2 Type II, Payment Card Industry (PCI), as applicable for the hosting service providers and other approved subcontractors involved in delivery of Services. Contractor agrees to remediate any High-Risk Findings resulting from this testing and provide confirmation of remediation to SWK. Upon request, Contractor agrees to make such reports available for review by SWK.
Sample 1

Related to Security Controls Testing

  • Security Controls Annually, upon Fund’s reasonable request, Transfer Agent shall provide Fund’s Chief Information Security Officer or his or her designee with a copy of its corporate information security controls that form the basis for Transfer Agent’s Security Policy and an opportunity to discuss Transfer Agent’s information security measures, and a high level summary of any vulnerability testing conducted by Transfer Agent on its information security controls, with a qualified member of Transfer Agent’s information technology management team. Transfer Agent shall review its Security Policy annually.

  • Accounting Controls and Disclosure Controls The Company and each of its subsidiaries maintain effective internal control over financial reporting (as defined under Rule 13-a15 and 15d-15 under the 1934 Act Regulations) and a system of internal accounting controls sufficient to provide reasonable assurances that (A) transactions are executed in accordance with management’s general or specific authorization; (B) transactions are recorded as necessary to permit preparation of financial statements in conformity with GAAP and to maintain accountability for assets; (C) access to assets is permitted only in accordance with management’s general or specific authorization; (D) the recorded accountability for assets is compared with the existing assets at reasonable intervals and appropriate action is taken with respect to any differences; and (E) the interactive data in eXtensible Business Reporting Language incorporated by reference in the Registration Statement, the General Disclosure Package and the Prospectus fairly presents the information called for in all material respects and is prepared in accordance with the Commission’s rules and guidelines applicable thereto. Except as described in the Registration Statement, the General Disclosure Package and the Prospectus, since the end of the Company’s most recent audited fiscal year, there has been (1) no material weakness in the Company’s internal control over financial reporting (whether or not remediated) and (2) no change in the Company’s internal control over financial reporting that has materially affected, or is reasonably likely to materially affect, the Company’s internal control over financial reporting. The Company and each of its subsidiaries maintain an effective system of disclosure controls and procedures (as defined in Rule 13a-15 and Rule 15d-15 under the 1934 Act Regulations) that are designed to ensure that information required to be disclosed by the Company in the reports that it files or submits under the 1934 Act is recorded, processed, summarized and reported, within the time periods specified in the Commission’s rules and forms, and is accumulated and communicated to the Company’s management, including its principal executive officer or officers and principal financial officer or officers, as appropriate, to allow timely decisions regarding disclosure.

Time is Money Join Law Insider Premium to draft better contracts faster.