Network Security Controls Clause Samples

The Network Security Controls clause establishes requirements for implementing and maintaining safeguards to protect a network and its data from unauthorized access, breaches, or cyber threats. Typically, this clause mandates the use of firewalls, encryption, intrusion detection systems, and regular security assessments to ensure the integrity and confidentiality of information transmitted or stored on the network. Its core function is to mitigate the risk of data breaches and cyberattacks, thereby ensuring the security and reliability of networked systems.
Network Security Controls. Data Importer's information systems have security controls designed to detect and mitigate attacks by using logs and alerting.
View SourceView Similar (5)
Network Security Controls. Provider’s information systems have security controls designed to detect and mitigate attacks by using logs and alerting.
View SourceView Similar (4)
Network Security Controls. Smartnova’s information systems have security controls designed to detect and mitigate attacks by using logs and alerting;
View Source
Network Security Controls. 81 7. DEFINITIONS..................................................................... 81 Page 71 of 163 EXHIBIT 10.23
View Source
Network Security Controls. 10.1. Vendor shall protect Confidential Information in its networks against unauthorized access or modification, by using, network security devices, such as firewalls and intrusion detection and prevention systems, at critical junctures of Vendor’s IT infrastructure to protect the network perimeters. 10.2. Vendor shall use up-to-date versions of system security software including firewalls, proxies, web application firewalls and interfaces. Additionally, Vendor shall implement and maintain up-to-date antivirus software, malware protection, security updates, patches, and virus definitions consistent with industry recognized standards. Such software shall be installed and running to scan for and promptly remove viruses on all endpoints, servers and networks. 10.3. Vendor shall maintain a patch management process that requires that patches are tested before installation on all systems that Process Confidential Information or are used to deliver services to Entrust. 10.4. Vendor shall ensure that system administrators maintain complete, accurate, and up-to-date information regarding the configuration of all systems that handle Confidential Information. 10.5. Vendor shall maintain controls to ensure the timely identification of vulnerabilities in Vendor’s information systems, including intrusion detection and/or prevention and monitoring and response processes, which identify both internal and external vulnerabilities and risks. At least monthly, Vendor shall scan its information systems with industry-standard security vulnerability scanning software to detect security vulnerabilities. Vendor shall classify detected vulnerabilities according to CVSS and shall remediate any such vulnerabilities within commercially reasonable timeframes commensurate with the risk or severity rating. 10.6. Vendor shall subscribe to vulnerability intelligence services that provide current information about technology and security vulnerabilities. 10.7. Vendor shall refrain from storing Confidential Information on media connected to external networks unless necessary for business purposes. 10.8. Vendor shall log network and remote access attempts and maintain those logs for a minimum of six (6) months.
View Source

Related to Network Security Controls

  • Security Controls Annually, upon Fund’s reasonable request, DST shall provide Fund’s Chief Information Security Officer or his or her designee with a summary of its corporate information security policy and an opportunity to discuss DST’s information security measures, and a high level and non-confidential summary of any penetration testing related to the provision of in-scope services . DST shall review its Security Policy annually.

  • Technical Security Controls 35 a. Workstation/Laptop encryption. All workstations and laptops that store PHI COUNTY 36 discloses to CONTRACTOR or CONTRACTOR creates, receives, maintains, or transmits on behalf of 37 COUNTY either directly or temporarily must be encrypted using a FIPS 140-2 certified algorithm which 1 is 128bit or higher, such as AES. The encryption solution must be full disk unless approved by the 2 COUNTY.

  • Network Security The AWS Network will be electronically accessible to employees, contractors and any other person as necessary to provide the Services. AWS will maintain access controls and policies to manage what access is allowed to the AWS Network from each network connection and user, including the use of firewalls or functionally equivalent technology and authentication controls. AWS will maintain corrective action and incident response plans to respond to potential security threats.

  • Data Integrity Control Personal Data will remain intact, complete and current during processing activities.

  • Security Systems The Service may not be compatible with security systems. You may be required to maintain a telephone connection through your local exchange carrier in order to use any alarm monitoring functions for any security system installed in your home or business. You are responsible for contacting the alarm monitoring company to test the compatibility of any alarm monitoring or security system with the Service.