System Acquisition Development and Maintenance. Supplier shall: (i) use separate physical and logical development/test and production environments and databases; (ii) maintain written change management and secure application/system development procedures, including procedures to manage software on the network so that only authorized software is installed and can execute; (iii) maintain tools or services to identify malicious programming and code, including unauthorized or unmanaged software; and (iv) manage the security life-cycle of software to timely prevent, detect, and remediate security vulnerabilities.
Appears in 1 contract
Sources: Supplier Agreement
System Acquisition Development and Maintenance. Supplier shall: (i) use separate physical and logical development/test and production pro- duction environments and databases; (ii) maintain written change management and secure application/system development procedures, including procedures to manage software on the network so that only authorized software is installed and can execute; (iii) maintain tools or services to identify malicious programming and code, including unauthorized or unmanaged software; and (iv) manage the security life-cycle of software to timely prevent, detect, and remediate security vulnerabilities.
Appears in 1 contract
Sources: Supplier Agreement