Information Security Standard definition

Information Security Standard defines the principles and minimum controls necessary for protecting Confidential Information and supporting the Information Security Policy.
Sample 1Sample 2Sample 3
Information Security Standard means ISO27001:2013 “Initial Contract Period” means the period of 12 months from the Commencement Date
Sample 1

Examples of Information Security Standard in a sentence

  • Requests for exception to the requirements of this Information Security Standard must be documented, provided to the Office of Information Security (OIS), and approved by the State Chief Information Security Officer (CISO).

  • Contractor shall adhere to the City’s Information and System Security Policy and Information Security Standard Handbook or any other similar standard such as NIST SP800-53, ISO 27005, CIS, or COBIT, in providing the services.

  • It is the responsibility of the Third Party/Supplier to ensure the Information Security Standard is communicated to and complied with by each subcontractor.

  • To the extent Supplier receives, accesses, or transmits cardholder data (e.g., credit or debit card data), Supplier acknowledges its responsibility to secure cardholder data and agrees to comply with applicable Payment Card Industry Information Security Standard requirements.

  • The intent of this Information Security Standard is to establish a baseline for information security and risk management activities for agencies across the Commonwealth of Virginia (COV).

  • Information security responsibilities are defined in the Information Security Standard and the Information Security Policy is reviewed on a periodic basis and approved by senior management.

  • Third Party/Supplier shall allow Lilly and its agents, auditors (internal and external), regulators, and other representatives to inspect, audit, examine, and review the facilities, books, systems, records, access rosters, data, practices and procedures of the Third Party/Supplier (and any subcontractors that the Third Party/Supplier may use) to verify the integrity of Information and to monitor compliance with this Information Security Standard.

  • PROVIDER shall be responsible for ensuring PROVIDER’S e-mail encryption product and information maintenance means are approved by the appropriate DJJ departments.a. The PROVIDER shall also ensure that they comply with the Commonwealth of Virginia’s Information Security Standard (aka SEC-501), as applicable, for all information technology associated with the handling of sensitive data and information of DJJ.

  • Each component listed above contains requirements that, together, comprise this Information Security Standard.

  • Initial and on-going assessments must be conducted to ensure subcontractors are adhering to the Information Security Standard and security incidents and problems are managed appropriately.

Related to Information Security Standard

  • Information Security shall have the same meanings as the terms “information technology” and “information security”, respectively, in §24-37.5-102, C.R.S. Capitalized terms used herein and not otherwise defined herein or in the HIPAA Rules shall have the meanings ascribed to them in the Contract.

  • Information Security Program means the administrative, technical, and physical safeguards that a licensee uses to access, collect, distribute, process, protect, store, use, transmit, dispose of, or otherwise handle nonpublic information.

  • Information Security Breach means the unauthorized acquisition, access, use, disclosure, transmittal, storage or transportation of Confidential Information which is not permitted by law or by the terms of this Amendment, including, but not limited to, a Security Incident.

  • Security Standards means the final rule implementing HIPAA’s Security Standards for the Protection of Electronic PHI, as amended.

  • Customer Information means any information contained on a customer’s application or other form and all nonpublic personal information about a customer that a Party receives from the other Party. Customer Information shall include, but not be limited to, name, address, telephone number, social security number, health information, and personal financial information (which may include a Masterworks user account number).

  • Client Information means any data, information, software or other materials that you provide to Red Hat under the Agreement.

  • Information Provider means the person or organisation providing the Information under this licence.

  • Patient Information means information (however recorded) which—

  • Customer information systems means any methods used to access, collect, store, use, transmit, protect, or dispose of customer in- formation.

  • National Security Information means information that has been determined pursuant to Executive Order 13526 or any predecessor order to require protection against unauthorized disclosure and is marked to indicate its classified status when in documentary form. Classified or national security information is specifically authorized to be protected from unauthorized disclosure in the interest of national defense or foreign policy under an Executive Order or Act of Congress.

  • Biometric information means any information, regardless of how it is captured, converted, stored, or shared, based on an individual’s biometric identifier used to identify an individual. Biometric information does not include information derived from items or procedures excluded under the definition of biometric identifiers.

  • Subscriber Information means any information contained in the form of data or any form that is held by a service provider, relating to subscribers of its services, other than traffic data or content data, by which can be established-

  • Cardholder Information means any non-public, sensitive information about a Cardholder, including any combination of Cardholder name plus the Cardholder’s social security number, driver’s license or other identification number or credit or debit card number, or other bank account number.

  • Regulatory Information Service means any information service authorised from time to time by the FCA for the purpose of disseminating regulatory announcements;

  • Customer Data means any content, materials, data and information that Authorized Users enter into the production system of a Cloud Service or that Customer derives from its use of and stores in the Cloud Service (e.g. Customer-specific reports). Customer Data and its derivatives will not include SAP’s Confidential Information.

  • Information has the meaning specified in Section 10.07.

  • Contractor information system means an information system belonging to, or operated by or for, the Contractor.

  • Commercial Information means information regarding the purchase and sale of goods and services, including, but not limited to, information regarding marketing strategy, production data, assessments of goods and services, mineral exploration records, and compilations of data regarding commercial activity.

  • Confidential System Information means any communication or record (whether oral, written, electronically stored or transmitted, or in any other form) provided to or made available to Grantee; or that Grantee may create, receive, maintain, use, disclose or have access to on behalf of HHSC or through performance of the Project, which is not designated as Confidential Information in a Data Use Agreement.

  • Security Information means account numbers and/or Username as applicable, passwords and other information required to identify you for the purposes of you trading with us under this Agreement.

  • Information processing system means an electronic system for creating, generating, sending, receiving, storing, displaying, or processing information.

  • User Information means User Compliance Information and User Financial Information.

  • Information Materials has the meaning given that term in Section 9.6.

  • Confidential commercial or financial information means any business information (other than trade secrets) which is exempt from the mandatory disclosure requirement of the Freedom of Information Act, 5 U.S.C. 552. Exemptions from mandatory disclosure which may be applicable to business information contained in proposals include exemption (4), which covers “commercial and financial information obtained from a person and privileged or confidential,” and exemption (9), which covers “geological and geophysical information, including maps, concerning wells.”

  • Consumer Information Any personally identifiable information in any form (written electronic or otherwise) relating to a Mortgagor, including, but not limited to: a Mortgagor’s name, address, telephone number, Mortgage Loan number, Mortgage Loan payment history, delinquency status, insurance carrier or payment information, tax amount or payment information; the fact that the Mortgagor has a relationship with the Seller or Servicer or the originator of the related Mortgage Loan; and any other non-public personally identifiable information.

  • Information Security Incident means (i) any actual or suspected incident involving Seller Information System that may involve Buyer’s Sensitive Information, or (ii) any actual or suspected unauthorized access to, use, or disclosure of Buyer’s Sensitive Information.