Security Testing. SSAE 16 Service Organization Control (SOC 2 and 3) Type II audits completed annually by a third party. • Global network penetration test conducted annually. Penetration test results are considered SAS’ Confidential Information. • Penetration tests performed for new and significantly-changed production applications that are exposed to the Internet.
Appears in 4 contracts
Samples: Contract for Products and Related Services, Contract for Products and Related Services, Hosting Services Agreement