My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
Kittitas County.2363-49714.ACT and EET Quality Assurance with Judge's Signature
>
Meetings
>
2023
>
08. August
>
2023-08-01 10:00 AM - Commissioners' Agenda
>
Kittitas County.2363-49714.ACT and EET Quality Assurance with Judge's Signature
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
7/27/2023 12:32:09 PM
Creation date
7/27/2023 12:29:13 PM
Metadata
Fields
Template:
Meeting
Date
8/1/2023
Meeting title
Commissioners' Agenda
Location
Commissioners' Auditorium
Address
205 West 5th Room 109 - Ellensburg
Meeting type
Regular
Meeting document type
Supporting documentation
Supplemental fields
Item
Request to Approve County Program Agreement - ACT and EET Quality Assurance Contract between Juvenile Court Services and Department of Children, Youth, and Families
Order
10
Placement
Consent Agenda
Row ID
106478
Type
Contract
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
29
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
(8) When accessing Confidential Information and Data from an external location (the Data will <br />traverse the Internet or otherwise travel outside the Trusted network), mitigate risk and enforce <br />hardened password and logon requirements for users by employing measuresthat include: <br />(a) Ensuring mitigations applied to the system don't allow end -user modification; <br />(b) Not allowing the use of dial -up connections; <br />(c) Using industry standard protocols and solutions for remote access. Examples include <br />secure VPN and Citrix; <br />(d) Encrypting all remote access traffic from the external workstation to Trusted Network or to a <br />component within the Trusted Network. The traffic must be encrypted at all times while <br />traversing any network, including the Internet, which is not a Trusted Network; <br />(e) Ensuring that the remote access system prompts for re -authentication or performs <br />automated session termination after no more than thirty (30) minutes of inactivity; and <br />(f) Ensuring the use of Multi -Factor Authentication (MFA) to connect from the external end <br />point to the internal end point. <br />(9) Hardened passwords or PIN codes may meet a lesser standard if used in conjunction with <br />another authentication mechanism, such as a biometric (fingerprint, face recognition, iris scan) <br />or token (software, hardware, smart card, etc.). If a lesser standard is authorized underthis <br />subsection, the PIN or password must: <br />(a) Be at least five (5) letters or numbers when used in conjunction with at least one other <br />authentication factor; <br />(b) Not be comprised of all the same letter or number (11111, 22222, aaaaa, would not be <br />acceptable); and <br />(c) Not contain a "run" of three or more consecutive numbers (12398, 98743 would not be <br />acceptable). <br />(10) If the Contract specifically allows for the storage of Confidential Information on a Portable <br />Device, passwords used on the device must: <br />(a) Be a minimum of six (6) alphanumeric characters; <br />(b) Contain at least three unique character classes (uppercase, lower case, letter, number); <br />(c) Not contain more than a three consecutive character run. Passcodes consisting of (12345, <br />or abcd12 would not be acceptable); and <br />(d) Render the device unusable after a maximum of five (5) failed logon attempts. <br />8. Protection of Data. <br />a. The Contractor agrees to store Data on one or more of the following medial and protectthe Data as <br />described: <br />(1) Hard disk drives <br />Department of Children, Youth & Families <br />2017CF County Program Agreement 6-24-20 Page 20 <br />
The URL can be used to link to this page
Your browser does not support the video tag.