Service Center Security Requirements Sample Clauses

Service Center Security Requirements. The Service Provider shall ensure that the physical Service Center facilities (including the FSA / HSA service center), as well as all HR Specialists, meets the following requirements: (a) The Service Provider shall disable the printing capability of all HR Specialists who handle in-bound calls. For all other Service Center employees, the Service Provider shall prohibit the printing of SOF Production Data without utilization of a pin number or passcode associated with the sender of the document. (b) Desk audits of HR Specialists shall be performed on a daily basis and results logged to ensure that SOF Production Data is protected. (c) The Service Provider agrees that all computers used by HR Specialists with access to SOF Production Data shall be configured to prohibit the storage of information to any location other than the network server or central server; and the Service Provider agrees that as to such computers no information shall be stored on any other storage device, including, but not limited to USB/PIN drive, compact disk (CD), DVD, or similar device or drive; and to the extent any computer retains such devices, they shall be disabled. (d) The computers used by HR Specialists with access to SOF Production Data shall be configured to restrict internet access (or the ability to transmit SOF Production Data by any other electronic means). Service Provider personnel working offsite or outside the Service Provider’s locations may only access SOF Production Data via the Service Provider’s virtual private network (VPN). (e) The Service Provider shall perform random quarterly audits of its employees’ and managers’ computers to determine if SOF Production Data has been downloaded, stored or inappropriately used. All audits shall be provided to the Department upon request. (f) As to the HR Specialists working with the SOF Production Data, the Service Provider shall prohibit such persons’ use of mobile devices including, but not limited to cellular telephones and tablets, or any devices with imaging capability in the Service Center floor where their computer workstations are located and where such work is being performed (and not in other areas of the Service Center). The foregoing shall not apply to the Service Provider’s supervisors, managers and persons in the LSAG. (g) Printing of any documentation containing SOF Production Data is strongly discouraged. However, when printing is unavoidable, the Service Provider shall shred all paper documents no longer...
Sample 1Sample 2
AutoNDA by SimpleDocs
Service Center Security Requirements. The Contractor shall ensure that the physical Service Center facility meets the following requirements: a. For all Service Center employees, beginning twelve (12) months after execution, the Contractor shall secure the Service Center and restrict access to only authorized employees. b. The Contractor shall comply with Rule 60GG-2, F.A.C. and encrypt confidential and exempt information during transmission. In addition, the Contractor shall encrypt mobile IT resources that store, process, or transmit exempt, or confidential and exempt agency data. c. The Contractor shall comply with State restrictions on internet access (or the ability to transmit State Data by any other electronic means) with respect to Contractor computers used by Service Center staff with access to State Data. Contractor personnel working offsite or outside the Contractor’s locations may only access State Data via the Contractor’s virtual private network (VPN). d. The Contractor shall certify periodically, but no less than quarterly, that system access audits for appropriate security assignments based on job role and function have been conducted. The Contractor shall notify the Department of any implications resulting from the audit related to this Contract and provide a remediation plan as deemed necessary by the Department. e. The Contractor shall shred all paper documents no longer necessary for daily support purposes and employ an accredited shredding company that is licensed, insured, and bonded to dispose of shredded documents. f. The Contractor shall ensure that all printer and computer hard drives shall be erased/cleaned or destroyed prior to surplus or sale. g. The Contractor shall prominently post a written notice in the Service Center reminding employees of their responsibility to safeguard State Data and requiring them to report suspected instances of security violations and perceived weaknesses in security procedures to their manager. h. The Contractor shall provide a privacy disclosure policy to its employees and require signatures denoting the employee’s understanding of the security provisions of this Contract. i. The Contractor shall ensure that employee's receive annual training regarding information privacy and security. The Contractor shall annually provide to the Department a copy of the privacy and security training materials and participant training logs. j. The Contractor shall within one (1) business day report to the Department any problems or concerns discovered...
Sample 1Sample 2

Related to Service Center Security Requirements

  • Security Requirements 7.1 The Authority will review the Contractor’s Security Plan when submitted by the Contractor in accordance with the Schedule (Security Requirements and Plan) and at least annually thereafter.

  • Data Security Requirements Without limiting Contractor’s obligation of confidentiality as further described in this Contract, Contractor must establish, maintain, and enforce a data privacy program and an information and cyber security program, including safety, physical, and technical security and resiliency policies and procedures, that comply with the requirements set forth in this Contract and, to the extent such programs are consistent with and not less protective than the requirements set forth in this Contract and are at least equal to applicable best industry practices and standards (NIST 800-53).

  • Federal Medicaid System Security Requirements Compliance Party shall provide a security plan, risk assessment, and security controls review document within three months of the start date of this Agreement (and update it annually thereafter) in order to support audit compliance with 45 CFR 95.621 subpart F, ADP System Security Requirements and Review Process.

  • City Requirements Design, construction, materials, sizing, other specifications, permitting, inspections, testing, documentation and furnishing of as-built drawings, and acceptance of completed infrastructure shall be in accordance with City Requirements. Design and construction shall be by professionals licensed in the state of North Carolina to do the relevant work. City approval of the design of the Improvements shall be required prior to construction, as set forth in City Requirements. If Developer is connecting to the County sewer system, the City may require Developer to furnish the contract providing for such connection.

  • Accessibility Requirements Under Tex. Gov’t Code Chapter 2054, Subchapter M, and implementing rules of the Texas Department of Information Resources, the System Agency must procure Products and services that comply with the Accessibility Standards when those Products are available in the commercial marketplace or when those Products are developed in response to a procurement solicitation. Accordingly, Grantee must provide electronic and information resources and associated Product documentation and technical support that comply with the Accessibility Standards.

  • Facility Requirements 1. Maintain wheelchair accessibility to program activities according to governing law, including the Americans With Disabilities Act (ADA), as applicable. 2. Provide service site(s) that will promote attainment of Contractor’s program objectives. Arrange the physical environment to support those activities. 3. Decrease program costs when possible by procuring items at no cost from County surplus stores and by accepting delivery of such items by County.

  • New Hampshire Specific Data Security Requirements The Provider agrees to the following privacy and security standards from “the Minimum Standards for Privacy and Security of Student and Employee Data” from the New Hampshire Department of Education. Specifically, the Provider agrees to: (1) Limit system access to the types of transactions and functions that authorized users, such as students, parents, and LEA are permitted to execute; (2) Limit unsuccessful logon attempts; (3) Employ cryptographic mechanisms to protect the confidentiality of remote access sessions; (4) Authorize wireless access prior to allowing such connections; (5) Create and retain system audit logs and records to the extent needed to enable the monitoring, analysis, investigation, and reporting of unlawful or unauthorized system activity; (6) Ensure that the actions of individual system users can be uniquely traced to those users so they can be held accountable for their actions; (7) Establish and maintain baseline configurations and inventories of organizational systems (including hardware, software, firmware, and documentation) throughout the respective system development life cycles; (8) Restrict, disable, or prevent the use of nonessential programs, functions, ports, protocols, and services; (9) Enforce a minimum password complexity and change of characters when new passwords are created; (10) Perform maintenance on organizational systems; (11) Provide controls on the tools, techniques, mechanisms, and personnel used to conduct system maintenance; (12) Ensure equipment removed for off-site maintenance is sanitized of any Student Data in accordance with NIST SP 800-88 Revision 1; (13) Protect (i.e., physically control and securely store) system media containing Student Data, both paper and digital; (14) Sanitize or destroy system media containing Student Data in accordance with NIST SP 800-88 Revision 1 before disposal or release for reuse; (15) Control access to media containing Student Data and maintain accountability for media during transport outside of controlled areas; (16) Periodically assess the security controls in organizational systems to determine if the controls are effective in their application and develop and implement plans of action designed to correct deficiencies and reduce or eliminate vulnerabilities in organizational systems; (17) Monitor, control, and protect communications (i.e., information transmitted or received by organizational systems) at the external boundaries and key internal boundaries of organizational systems; (18) Deny network communications traffic by default and allow network communications traffic by exception (i.e., deny all, permit by exception); (19) Protect the confidentiality of Student Data at rest; (20) Identify, report, and correct system flaws in a timely manner; (21) Provide protection from malicious code (i.e. Antivirus and Antimalware) at designated locations within organizational systems; (22) Monitor system security alerts and advisories and take action in response; and (23) Update malicious code protection mechanisms when new releases are available.

  • E-Verify Requirements To the extent applicable under ARIZ. REV. STAT. § 41- 4401, the Contractor and its subcontractors warrant compliance with all federal immigration laws and regulations that relate to their employees and their compliance with the E-verify requirements under ARIZ. REV. STAT. § 23-214(A). Contractor’s or its subcontractor’s failure to comply with such warranty shall be deemed a material breach of this Agreement and may result in the termination of this Agreement by the City.

  • Residency Requirements 1. All single first-year freshmen students are required to live in University housing for at least two academic semesters. All single students who have earned less than 30 credit hours and have not resided in University housing for two academic semesters are required to live on campus for two academic semesters. This policy does not apply to single first-year students who have been out of high school for more than one year, or to single first-year freshmen who live with their parents in Miami-Dade or Broward Counties. Neither does it apply to those students who, for disciplinary or administrative reasons, may be denied the privilege of continued residency on campus. 2. Undergraduate students residing in University housing must be regularly enrolled students of the University, taking a minimum of 12 credit hours each semester. Graduate students (when housed by exception) must carry a minimum of nine credit hours per semester. To apply and sign-up for University Village apartments, students must have 45 or more completed academic credits. In order to move into University Village, students must have 60 or more completed academic credits or have completed 4 academic semesters at the University and be achieving satisfactory academic progress as defined by the University Bulletin.

  • Personal Property Requirements The Collateral Agent shall have received from each Loan Party (except to the extent the Administrative Agent determines that any of the following is not commercially feasible, taking into account the cost to procure and the effectiveness and enforceability under local law): (i) all certificates, agreements or instruments representing or evidencing the Pledged Equity Interests and the Pledged Intercompany Debt (each as defined in the U.S. Security Agreement) accompanied by instruments of transfer and stock powers endorsed in blank; (ii) all other certificates, agreements, including Control Agreements, or instruments necessary to perfect security interests in all Chattel Paper, all Instruments, all Deposit Accounts and all Investment Property of each Loan Party (as each such term is defined in the U.S. Security Agreement and to the extent required by the terms of the U.S. Security Agreement); (iii) UCC financing statements in appropriate form for filing under the UCC and such other documents under applicable Requirements of Law in each jurisdiction as may be necessary or appropriate to perfect the Liens created, or purported to be created, by the Security Documents; (iv) certified copies of Requests for Information (Form UCC-11), tax lien, judgment lien, bankruptcy and pending lawsuit searches or equivalent reports or lien search reports, each of a recent date listing all effective financing statements, lien notices or comparable documents that name (A) any domestic Loan Party as debtor and that are filed in those state and county jurisdictions in which any of the property of such domestic Loan Party is located and the state and county jurisdictions in which such domestic Loan Party’s principal place of business is located, and (B) any foreign Loan Party, to the extent obtainable from the District of Columbia, none of which encumber the Collateral covered or intended to be covered by the Security Documents (other than those relating to Liens acceptable to the Collateral Agent); (v) delivery of such documents and instruments and instruments as the Collateral Agent may request for filing with the United States Patent, Trademark and Copyright Offices, and the execution and/or delivery of such other security and other documents, and the taking of all actions as may be necessary or, in the reasonable opinion of the Collateral Agent, desirable, to perfect the Liens created, or purported to be created, by the Security Agreements; (vi) any documents required to be submitted to the Collateral Agent by the Loan Parties as may be necessary or desirable to perfect the security interest of the Collateral Agent pursuant to each Foreign Security Agreement; and (vii) evidence acceptable to the Collateral Agent of payment by the Loan Parties of all applicable recording taxes, fees, charges, costs and expenses required for the recording of the Security Documents.

Draft better contracts in just 5 minutes Get the weekly Law Insider newsletter packed with expert videos, webinars, ebooks, and more!