Cybersecurity Program Sample Clauses
The Cybersecurity Program clause establishes the requirement for an organization to implement and maintain a comprehensive set of policies, procedures, and technical safeguards to protect its information systems and data from cyber threats. This typically involves measures such as regular risk assessments, employee training, incident response planning, and the use of security technologies like firewalls and encryption. The core function of this clause is to ensure that both parties are protected against data breaches and cyberattacks, thereby reducing the risk of unauthorized access or data loss.
POPULAR SAMPLE Copied 1 times
Cybersecurity Program. Broker-Dealer represents, warrants and covenants that it has implemented and maintains, and shall continue to maintain, a cybersecurity program that includes administrative, technical and physical safeguards designed to protect the confidentiality, integrity and availability of Nonpublic Information and Broker-Dealer’s VARIABLE BDSA_5-2021 BD V only(Notice) Information Systems. Broker-Dealer’s cybersecurity program is, and shall remain, designed to:
(a) identify and assess internal and external cybersecurity risks that may threaten the security or integrity of Nonpublic Information stored on Broker-Dealer’s Information Systems;
(b) use defensive infrastructure and implement policies and procedures to protect Broker-Dealer’s Information Systems, and Nonpublic Information stored on such Information Systems, from unauthorized access, use or other malicious acts and minimize the likelihood of harm to any individual;
(c) detect Cybersecurity Events;
(d) respond to identified or detected Cybersecurity Events to mitigate any negative effects;
(e) recover from Cybersecurity Events and restore normal operations and services;
(f) fulfill applicable regulatory reporting obligations; and
(g) define and periodically reevaluate a schedule for retention of Nonpublic Information and a mechanism for its destruction when no longer needed.
Cybersecurity Program. Broker-Dealer represents, warrants and covenants that it has implemented and maintains, and shall continue to maintain, a cybersecurity program that includes administrative, technical and physical safeguards designed to protect the confidentiality, integrity and availability of Nonpublic Information and Broker-Dealer’s Information Systems. Broker-Dealer’s cybersecurity program is, and shall remain, designed to:
(a) identify and assess internal and external cybersecurity risks that may threaten the security or integrity of Nonpublic Information stored on Broker-Dealer’s Information Systems;
(b) use defensive infrastructure and implement policies and procedures to protect Broker-Dealer’s Information Systems, and Nonpublic Information stored on such Information Systems, from unauthorized access, use or other malicious acts and minimize the likelihood of harm to any individual;
(c) detect Cybersecurity Events;
(d) respond to identified or detected Cybersecurity Events to mitigate any negative effects;
(e) recover from Cybersecurity Events and restore normal operations and services;
(f) fulfill applicable regulatory reporting obligations; and
(g) define and periodically reevaluate a schedule for retention of Nonpublic Information and a mechanism for its destruction when no longer needed.
Cybersecurity Program. Without limiting any other obligations hereunder, Investment Adviser has implemented and will maintain an information security program that includes reasonable and appropriate physical, technical and administrative measures to safeguard information it obtains under this Agreement, including but not limited to:
(i) Written information security policies and procedures;
(ii) Industry standard access controls to limit access to the information and systems containing the information only to those who need such access to perform the services hereunder, including requiring the use of multi-factor authentication for any remote access to the information or systems with access to the information;
(iii) User identification and password standards, including length and configuration attributes (character composition, expiration term, no sharing of accounts, separate privileged user accounts from non-privileged user accounts, etc.);
(iv) Industry accepted methods of secure encryption of the information in transit over public networks and, where applicable to Investment Adviser’s services, of data storage and backups of information at rest;
Cybersecurity Program. The Market shall define and maintain a comprehensive cybersecurity program and framework which:
(i) considers and accounts for reasonably foreseeable cybersecurity threats that could impact the Market and its business;
(ii) protects the confidentiality, integrity and availability requirements of the Market’s systems and information;
(iii) includes an implemented and actively maintained written enterprise cybersecurity policy approved by the Market’s senior management or the Market’s board of directors (or other equivalent body);
(iv) is in alignment with standard industry best practices and guidelines;
(v) if the Market uses a third-party service provider to connect or transact business or to manage its connection with the Corporation, maintains an appropriate program to evaluate the cybersecurity risks and impact of these third parties and to review the third-party assurance reports;
(vi) protects the segment of the exchange system that connects to and/or interacts with the Corporation; and
(vii) has an established process to remediate cybersecurity issues identified to fulfill regulatory and/or statutory requirements.
Cybersecurity Program. Subscriber Organization shall establish and maintain a continuous cybersecurity program (i.e., aligned with the intent of NERC CIP-003-6) that enables the Subscriber Organization (or its designated third party) to:
Cybersecurity Program. Seller shall establish and maintain a continuous cybersecurity program (i.e., aligned with the intent of NERC CIP-003-6) that enables the Seller (or its designated third party) to:
Cybersecurity Program. The Requesting Party must have a cybersecurity program in place. This program should address the following areas: