My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
Executed ACT and EET Agreement
>
Meetings
>
2023
>
08. August
>
2023-08-01 10:00 AM - Commissioners' Agenda
>
Executed ACT and EET Agreement
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
8/28/2023 2:10:48 PM
Creation date
8/28/2023 2:10:28 PM
Metadata
Fields
Template:
Meeting
Date
8/1/2023
Meeting title
Commissioners' Agenda
Location
Commissioners' Auditorium
Address
205 West 5th Room 109 - Ellensburg
Meeting type
Regular
Meeting document type
Fully Executed Version
Supplemental fields
Item
Request to Approve County Program Agreement - ACT and EET Quality Assurance Contract between Juvenile Court Services and Department of Children, Youth, and Families
Order
10
Placement
Consent Agenda
Row ID
106478
Type
Contract
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
30
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
(B) When accessing Confidential lnformation and Data from an external location (the Data will <br />traverse the lnternet or othenruise travel outside the Trusted network), mitigate risk and enforce <br />hardened password and logon requirements for users by employing measuresthat include: <br />(a) Ensuring mitigations applied to the system don't allowend-usermodification; <br />(b) Not allowing the use of dial-up connections; <br />(c) Using industry standard protomls and solutions for remote access. Examples include <br />secure VPN and Citrix; <br />(d) Encrypting all remote access traffic from the external workstation to Trusted Network or to a <br />component within the Trusted Network. The traffic must be encrypted at all times while <br />traversing any network, including the lnternet, which is not a Trusted Network; <br />(e) Ensuring that the remote access system prompts for re-authentication or performs <br />automated session termination after no more than thirty (30)minutes of inactivity; and <br />(f) Ensuring the use of Multi-Factor Authentication (MFA) to connect from the external end <br />point to the internal end point. <br />(9) Hardened passwords or PIN codes may meet a lesser standard if used in conjunction with <br />another authentication mechanism, such as a biometric (fingerprint, face recognition, iris scan) <br />or token (software, hardware, smart card, etc.). lf a lesser standard is authorized underthis <br />subsection, the PIN or password must: <br />(a) Be at least five (5) letters or numbers when used in conjunction with at lea st one other <br />authentication factor; <br />(b) Not be comprised of all the same letter or number (11111,22222, aaaaa, would not be <br />acceptable); and <br />(c) Not contain a "run" of three or more consecutive numbers (12398, gBT43 would not be <br />acceptable). <br />(10) lf the Contract specifically allows for the storage of Confidential lnformation on a portable <br />Device, passwords used on the device must: <br />(a) Be a minimum of six (6) alphanumeric characters; <br />(b) Contain at least three unique character classes (uppercase, lower case, letter, number); <br />(c) Not contain more than a three consecutive character run. Passcodes consisting of (1 2g45, <br />or abcd 12 would not be acceptable); and <br />(d) Render the device unusable after a maximum of five (5) failed logon attempts. <br />B. Protection of Data. <br />The Contractor agrees to store Data on one or more of the following medias and protect the Data asdescribed: <br />(1) Hard disk drives <br />Departmentof Children, Youlh & Families <br />2017CF County Program Agreement 6-24-20 <br />d <br />Page 20
The URL can be used to link to this page
Your browser does not support the video tag.