IT Security Certification and Accreditation (IT Clause Samples

IT Security Certification and Accreditation (IT. SC&A) – due within 3 months after contract award. The Contractor shall submit written proof to the Contracting Officer that an IT-SC&A was performed for applicable information systems – see paragraph (a) of this clause. The Contractor shall perform the IT-SC&A in accordance with the HHS Chief Information Security Officer's Certification and Accreditation Checklist; NIST SP 800-37, Guide for the Security, Certification and Accreditation of Federal Information Systems; and NIST 800-53, Recommended Security Controls for Federal Information Systems. An authorized senior management official shall sign the draft IT-SC&A and provided it to the Contracting Officer for review, comment, and acceptance. a. After resolution of any comments provided by the Government on the draft IT SC&A, the Contracting Officer shall accept the IT-SC&A and incorporate the Contractor's final version into the contract as a compliance requirement. b. The Contractor shall also perform an annual security control assessment and provide to the Contracting Officer verification that the IT-SC&A remains valid. Evidence of a valid system accreditation includes written results of: i. Annual testing of the system contingency plan; and ii. The performance of security control testing and evaluation.
View SourceView Similar (20)
IT Security Certification and Accreditation (IT. SC&A) - due within 3 months after contract award. The Contractor shall submit written proof to the Contracting Officer that an IT-SC&A was performed for applicable information systems - see paragraph (a) of this clause. The Contractor shall perform the IT-SC&A in accordance with the HHS Chief Information Security Officer's Certification and Accreditation Checklist; NIST SP 800-37, Guide for the Security, Certification and Accreditation of Federal Information Systems; and NIST 800-53, Recommended Security Controls for Federal Information Systems. An authorized senior management official shall sign the draft IT-SC&A and provided it to the Contracting Officer for review, comment, and acceptance.
View SourceView Similar (2)

Related to IT Security Certification and Accreditation (IT

  • Non-compliance Penalty Certificate If any Non-compliance Penalty arises, the Supplier Development Manager shall issue a Non- compliance Penalty Certificate 90 business days before the expiry of the contract indicating the Non-compliance Penalties which have accrued during that period.

  • Eligibility Certification A state agency may not accept a bid or award a contract that includes proposed financial participation by a person who received compensation from the agency to participate in preparing the Specifications or request for proposals on which the bid or contract is based. The Texas Government Code requires the following statement: “Under Section 2155.004, Texas Government Code, the vendor certifies that the individual or business entity named in this bid or contract is not ineligible to receive the specified contract and acknowledges that this contract may be terminated and payment withheld if this certification is inaccurate.”

  • Regulatory Good Standing Certification Does Vendor certify that its entity is in good standing will all government entities and agencies, whether local, state, or federal, that regulate any aspect of Vendor's field of work or business operations? If Vendor selects "No", Vendor must provide explanation on the following attribute question. Yes, Vendor certifies If Vendor responded to the prior attribute that "No", Vendor is not in good standing, Vendor must provide an explanation of that lack of good standing here for TIPS consideration.

  • Evidence of Compliance with Conditions Precedent; Certificates and Opinions of Counsel to Trustee Upon any application or demand by the Company to the Trustee to take any action under any of the provisions of this Indenture, the Company shall, if requested by the Trustee, furnish to the Trustee an Officer’s Certificate and an Opinion of Counsel stating that such action is permitted by the terms of this Indenture and that in the opinion of the signers, all conditions precedent, if any, provided for in this Indenture relating to the proposed action have been complied with. Each Officer’s Certificate and Opinion of Counsel provided for, by or on behalf of the Company in this Indenture and delivered to the Trustee with respect to compliance with this Indenture (other than the Officer’s Certificates provided for in Section 4.08) shall include (a) a statement that the person signing such certificate is familiar with the requested action and this Indenture; (b) a brief statement as to the nature and scope of the examination or investigation upon which the statement contained in such certificate is based; (c) a statement that, in the judgment of such person, he or she has made such examination or investigation as is necessary to enable him or her to express an informed judgment as to whether or not such action is permitted by this Indenture; and (d) a statement as to whether or not, in the judgment of such person, such action is permitted by this Indenture and that all conditions precedent to such action have been complied with. With respect to matters of fact, an Opinion of Counsel may rely on an Officer’s Certificate or certificates of public officials. Notwithstanding anything to the contrary in this Section 17.05, if any provision in this Indenture specifically provides that the Trustee shall or may receive an Opinion of Counsel in connection with any action to be taken by the Trustee or the Company hereunder, the Trustee shall be entitled to, or entitled to request, such Opinion of Counsel.

  • Regulatory Good Standing Certification - Explanation - Continued If Vendor responded to the prior attribute that "No", Vendor is not in good standing, Vendor must provide an explanation of that lack of good standing here for TIPS consideration.