My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
DSHS County Program Agreement
>
Meetings
>
2019
>
08. August
>
2019-08-20 10:00 AM - Commissioners' Agenda
>
DSHS County Program Agreement
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
8/15/2019 12:45:43 PM
Creation date
8/15/2019 12:44:45 PM
Metadata
Fields
Template:
Meeting
Date
8/20/2019
Meeting title
Commissioners' Agenda
Location
Commissioners' Auditorium
Address
205 West 5th Room 109 - Ellensburg
Meeting type
Regular
Meeting document type
Supporting documentation
Supplemental fields
Alpha Order
g
Item
Request to Approve an Agreement between the Department of Social and Health Services and the Kittitas County Public Health Department
Order
7
Placement
Consent Agenda
Row ID
55882
Type
Contract
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
24
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
are not limited to, mobile phones, tablets, and laptops. Mobile Device is a subset of Portable <br />Device. <br />j. "Portable Media" means any machine readable media that may routinely be stored or moved <br />independently of computing devices. Examples include magnetic tapes, optical discs (CDs or <br />DVDs), flash memory (thumb drive) devices, external hard drives, and internal hard drives that have <br />been removed from a computing device. <br />k. "Secure Area" means an area to which only authorized representatives of the entity possessing the <br />Confidential Information have access, and access is controlled through use of a key, card key, <br />combination lock, or comparable mechanism. Secure Areas may include buildings, rooms or <br />locked storage containers (such as a filing cabinet or desk drawer) within a room, as long as access <br />to the Confidential Information is not available to unauthorized personnel. In otherwise Secure <br />Areas, such as an office with restricted access, the Data must be secured in such a way as to <br />prevent access by non -authorized staff such as janitorial or facility security staff, when authorized <br />Contractor staff are not present to ensure that non -authorized staff cannot access it. <br />I. "Trusted Network" means a network operated and maintained by the Contractor, which includes <br />security controls sufficient to protect DSHS Data on that network. Controls would include a firewall <br />between any other networks, access control lists on networking devices such as routers and <br />switches, and other such mechanisms which protect the confidentiality, integrity, and availability of <br />the Data. <br />m. "Unique User ID" means a string of characters that identifies a specific user and which, in <br />conjunction with a password, passphrase or other mechanism, authenticates a user to an <br />information system. <br />2. Authority. The security requirements described in this document reflect the applicable requirements of <br />Standard 141.10 (https.,//ocio.wa.gov/policies) of the Office of the Chief Information Officer for the state <br />of Washington, and of the DSHS Information Security Policy and Standards Manual. Reference <br />material related to these requirements can be found here: https:l/www.dshs.wa.gav/fsa/central- <br />contract-services/kee in -dshs-client-information- rivate-and-secure, which is a site developed by the <br />DSHS Information Security Office and hosted by DSHS Central Contracts and Legal Services. <br />3. Administrative Controls. The Contractor must have the following controls in place: <br />a. A documented security policy governing the secure use of its computer network and systems, and <br />which defines sanctions that may be applied to Contractor staff for violating that policy. <br />b. If the Data shared under this agreement is classified as Category 4 data, the Contractor must be <br />aware of and compliant with the, applicable legal or regulatory requirements for that Category 4 <br />Data. <br />c. If Confidential Information shared under this agreement is classified as Category 4 data, the <br />Contractor must have a documented risk assessment for the system(s) housing the Category 4 <br />Data. <br />4. Authorization, Authentication, and Access. In order to ensure that access to the Data is limited <br />to authorized staff, the Contractor must: <br />DSHS Central Contract Services Page 17 <br />1769CS County Agreement 5-1-2019 <br />
The URL can be used to link to this page
Your browser does not support the video tag.