Certifications and Attestations. ServiceNow shall establish and maintain sufficient controls to meet the objectives stated in ISO 27001, ISO 27018, SSAE 18 / SOC 1 and SOC 2 Type 2 (or equivalent standards) (collectively, the “Standards”) for the information security management system supporting the Subscription Service. At least once per calendar year, ServiceNow shall obtain an assessment against such Standards by an independent third-party auditor.
Appears in 7 contracts
Sources: Subscription Service Agreement, Master Subscription Service Agreement, Data Processing Agreement
Certifications and Attestations. ServiceNow shall establish and maintain sufficient controls to meet the objectives stated in ISO 27001, ISO 27018, 27001 and SSAE 18 16 / SOC 1 and SOC 2 Type 2 (or equivalent standards) (collectively, the “Standards”) for the information security management system supporting the Subscription Service. At least once per calendar year, ServiceNow shall obtain perform an assessment against such Standards by an independent third-party auditor(“Assessment”). Upon Customer’s written request, which shall be no more than once per calendar year, ServiceNow shall provide a summary of the Assessment(s) to Customer. Assessments shall be Confidential Information of ServiceNow.
Appears in 2 contracts
Sources: Subscription Service Agreement, Carahsoft Rider to Manufacturer End User License Agreements
Certifications and Attestations. ServiceNow shall establish and maintain sufficient controls to meet the objectives stated in ISO 27001, ISO 27018, SSAE 18 / SOC 1 and SOC 2 Type 2 (or equivalent standards) (collectively, the “Standards”) for the information security management system supporting the Subscription Service. At least once per calendar year, ServiceNow shall obtain an assessment against such Standards by an independent third-third- party auditor.
Appears in 2 contracts
Sources: Ordering Agreement, Ordering Agreement
Certifications and Attestations. ServiceNow shall establish and maintain sufficient controls to meet certification and attestation for the objectives stated in ISO 27001, ISO 27018, SSAE 18 / SOC 1 and SOC 2 Type 2 (or equivalent standards) (collectively, the “Standards”) for the information security management system Security Program supporting the Subscription Service. At least once per calendar year, ServiceNow shall obtain an assessment against such Standards standards and audit methodologies by an independent third-party auditor.auditor and make the executive reports available to the Customer
Appears in 2 contracts
Sources: Public Sector Subscription Terms of Service, Public Sector Subscription Terms of Service
Certifications and Attestations. ServiceNow shall establish and maintain sufficient controls to meet certification and attestation for the objectives stated in ISO 27001, ISO 27018, SSAE 18 / SOC 1 and SOC 2 Type 2 (or equivalent standards) (collectively, the “Standards”) for the information security management system Security Program supporting the Subscription Service. At least once per calendar year, ServiceNow shall obtain an assessment against such Standards standards and audit methodologies by an independent third-party auditorauditor and make the executive reports available to the Customer.
Appears in 1 contract