SERVICE CONTINUITY MANAGEMENT POLICY STATEMENTS Clause Samples

SERVICE CONTINUITY MANAGEMENT POLICY STATEMENTS. 6.2.1 Backups of all essential electronically maintained County business data shall be routinely created and properly stored to ensure prompt restoration. 6.2.2 Each department shall implement and document a backup approach for ensuring the availability of critical application databases, system configuration files, and/or any other electronic information critical to maintaining normal business operations within the department. 6.2.3 The frequency and extent of backups shall be in accordance with the importance of the information and the acceptable risk as determined by each department. 6.2.4 Departments shall ensure that locations where backup media are stored are safe, secure, and protected from environmental hazards. Access to backup media shall be commensurate with the highest level of information stored and physical access controls shall meet or exceed the physical access controls of the data’s source systems. 6.2.5 Backup media shall be labeled and handled in accordance with the highest sensitivity level of the information stored on the media. 6.2.6 Departments shall define and periodically test a formal procedure designed to verify the success of the backup process. 6.2.7 Restoration from backups shall be tested initially once the process is in place and periodically afterwards. Confirmation of business functionality after restoration shall also be tested in conjunction with the backup procedure test. 6.2.8 Departments shall retain backup information only as long as needed to carry out the purpose for which the data was collected, or for the minimum period required by law. 6.2.9 Alternate storage facilities shall be used to ensure confidentiality, integrity and availability of all County systems. 6.2.10 Each department shall develop, periodically update, and regularly test business continuity and disaster recovery plans in accordance with the County’s Business Continuity Management Policy. 6.2.11 Departments shall review and update their Risk Assessments (RAs) and Business Impact Analyses (BIAs) as necessary, determined by department management (annually is recommended). As detailed in Section 14: Risk Assessment and Treatment, RAs include department identification of risks that can cause interruptions to business processes along with the probability and impact of such interruptions and the consequences to information security. A BIA establishes the list of processes and systems that the department has deemed critical after performing a risk analysis...
View SourceView Similar (6)
SERVICE CONTINUITY MANAGEMENT POLICY STATEMENTS. Backups of all essential electronically-maintained County business data shall be routinely created and properly stored to ensure prompt restoration.
View SourceView Similar (2)
SERVICE CONTINUITY MANAGEMENT POLICY STATEMENTS. 6.2.1 Backups of all essential electronically maintained County business data shall be routinely created and properly stored to ensure prompt restoration. 6.2.2 Each department shall implement and document a backup approach for ensuring the availability of critical application databases, system configuration files, and/or any other electronic information critical to maintaining normal business operations within the department. Docusign Envelope ID: 7489E300-8AF1-4335-9329-A29008757313 6.2.3 The frequency and extent of backups shall be in accordance with the importance of the information and the acceptable risk as determined by each department. 6.2.4 Departments shall ensure that locations where backup media are stored are safe, secure, and protected from environmental hazards. Access to backup media shall be commensurate with the highest level of information stored and physical access controls shall meet or exceed the physical access controls of the data’s source systems. 6.2.5 Backup media shall be labeled and handled in accordance with the highest sensitivity level of the information stored on the media. 6.2.6 Departments shall define and periodically test a formal procedure designed to verify the success of the backup process. 6.2.7 Restoration from backups shall be tested initially once the process is in place and periodically afterwards. Confirmation of business functionality after restoration shall also be tested in conjunction with the backup procedure test. 6.2.8 Departments shall retain backup information only as long as needed to carry out the purpose for which the data was collected, or for the minimum period required by law. 6.2.9 Alternate storage facilities shall be used to ensure confidentiality, integrity and availability of all County systems. 6.2.10 Each department shall develop, periodically update, and regularly test business continuity and disaster recovery plans in accordance with the County’s Business Continuity Management Policy. 6.2.11 Departments shall review and update their Risk Assessments (RAs) and Business Impact Analyses (BIAs) as necessary, determined by department management (annually is recommended). As detailed in Section 14: Risk Assessment and Treatment, RAs include department identification of risks that can cause interruptions to business processes along with the probability and impact of such interruptions and the consequences to information security. A BIA establishes the list of processes and systems that the depa...
View SourceView Similar (2)

Related to SERVICE CONTINUITY MANAGEMENT POLICY STATEMENTS

  • Business Continuity Plan The Warrant Agent shall maintain plans for business continuity, disaster recovery, and backup capabilities and facilities designed to ensure the Warrant Agent’s continued performance of its obligations under this Agreement, including, without limitation, loss of production, loss of systems, loss of equipment, failure of carriers and the failure of the Warrant Agent’s or its supplier’s equipment, computer systems or business systems (“Business Continuity Plan”). Such Business Continuity Plan shall include, but shall not be limited to, testing, accountability and corrective actions designed to be promptly implemented, if necessary. In addition, in the event that the Warrant Agent has knowledge of an incident affecting the integrity or availability of such Business Continuity Plan, then the Warrant Agent shall, as promptly as practicable, but no later than twenty-four (24) hours (or sooner to the extent required by applicable law or regulation) after the Warrant Agent becomes aware of such incident, notify the Company in writing of such incident and provide the Company with updates, as deemed appropriate by the Warrant Agent under the circumstances, with respect to the status of all related remediation efforts in connection with such incident. The Warrant Agent represents that, as of the date of this Agreement, such Business Continuity Plan is active and functioning normally in all material respects.

  • Management; Community Policies Owner may retain employees and management agents from time to time to manage the Property, and Owner’s agent may retain other employees or contractors. Resident, on behalf of himself or herself and his or her Guests, agrees to comply fully with all directions from Owner and its employees and agents, and the rules and regulations (including all amendments and additions thereto, except those that substantially modify the Resident’s bargain and to which Resident timely objects) as contained in this Agreement and the Community Policies of the Property. The Community Policies are available at ▇▇▇▇▇://▇▇▇▇▇▇▇▇▇▇▇▇▇▇.▇▇▇/policies.pdf or on request from the management office and are considered part of this Agreement.

  • Business Continuity Registry Operator shall maintain a business continuity plan, which will provide for the maintenance of Registry Services in the event of an extraordinary event beyond the control of the Registry Operator or business failure of Registry Operator, and may include the designation of a Registry Services continuity provider. If such plan includes the designation of a Registry Services continuity provider, Registry Operator shall provide the name and contact information for such Registry Services continuity provider to ICANN. In the case of an extraordinary event beyond the control of the Registry Operator where the Registry Operator cannot be contacted, Registry Operator consents that ICANN may contact the designated Registry Services continuity provider, if one exists. Registry Operator shall conduct Registry Services Continuity testing at least once per year.

  • Enterprise Information Management Standards Performing Agency shall conform to HHS standards for data management as described by the policies of the HHS Chief Data and Analytics Officer. These include, but are not limited to, standards for documentation and communication of data models, metadata, and other data definition methods that are required by HHS for ongoing data governance, strategic portfolio analysis, interoperability planning, and valuation of HHS System data assets.