My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
Final Contract
>
Meetings
>
2022
>
11. November
>
2022-11-01 10:00 AM - Commissioners' Agenda
>
Final Contract
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
10/27/2022 12:57:47 PM
Creation date
10/27/2022 12:57:12 PM
Metadata
Fields
Template:
Meeting
Date
11/1/2022
Meeting title
Commissioners' Agenda
Location
Commissioners' Auditorium
Address
205 West 5th Room 109 - Ellensburg
Meeting type
Regular
Meeting document type
Supporting documentation
Supplemental fields
Item
Request to Approve Contract Amendment i-ACT and EET Program Development
Order
3
Placement
Consent Agenda
Row ID
95608
Type
Contract
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
21
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
a. All federal and state laws and regulations, as currently enacted or revised, regarding the protection, <br />security, and electronic interchange of Confidential Information, Data, Category 4 Data, Sensitive <br />Personal Information, and Materials; and <br />b. All federal and state laws and regulations, as currently enacted or revised, regarding the use, <br />disclosure, modification or loss of Confidential Information, Data, Category 4 Data, Sensitive <br />Personal Information, and Materials. <br />5. Administrative Controls. The Contractor must have the following controls in place: <br />a. A documented security policy governing the secure use of its computer network, mobile devices, <br />portable devices, as well as, any form of paper/hard copy documents, and which defines sanctions <br />that may be applied to Contractor staff for violating that policy. <br />b. Security awareness training for all staff, presented annually, as follows: <br />(1). Contractor staff responsibilities under the Contractor's security policy; <br />(2). Contactor staff responsibilities as outlined under contract Exhibit A; and <br />(3). Must successfully complete the DCYF Information Security Awareness Training, which can be <br />taken on this web page: https //www dcyf wagov/sites/default/files/pdf/Security-in-Contracts pdf <br />Authorization, Authentication, and Access. In order to ensure that access to the Data is limited to <br />authorized staff, the Contractor must: <br />a. Have documented policies and procedures that: <br />(1). Govern access to systems; and <br />(2). Govern access to paper/hard copy documents and files. <br />b. Restrict access through administrative, physical, and technical controls to authorized staff; <br />c. Ensure that user accounts are unique and that any given user account logon ID and password <br />combination is known only to the one staff member to whom that account is assigned. For <br />purposes of non -repudiation, it must always be possible to determine which staff member <br />performed a given action on a system housing the Data based solely on the logon ID used to <br />perform the action; <br />d. Ensure that only authorized users are capable of accessing the Data; <br />e. Ensure that an employee's access to Data is removed within twenty-four (24) hours: <br />(1). Upon suspected compromise of the user credentials; <br />(2). When their employment, or the contract under which the Data is made available to them, is <br />terminated; <br />(3). When they no longer need access to the Data to fulfill the requirements of the Contract; and <br />(4). When the staff member has been suspended from performing services under this Contract. <br />f. Have a process to review and verify, quarterly, that only authorized users have access to systems <br />Deparhnent of Children, Youth & Families <br />2017CF County Program Agreement 6-24-20 Page 11 <br />
The URL can be used to link to this page
Your browser does not support the video tag.