Audit Scope. 2.1 The Group audits Customers, End Customers, Redistributors, Service Facilitators, and third party recipients of the Exchanges’ Data.
Audit Scope. Solely with respect to SunTrust Proprietary Information, to assess the effective protection of such information, SunTrust will have the right to conduct remote or on-site audits of FMC, at SunTrust’s discretion and expense (except as set forth below), to review the information and data security systems and procedures and processes of FMC (collectively, the “Security Systems”) at any time during FMC’s regular business hours, upon no less than ten (10) Business Days prior written notice to FMC. Testing conducted will be performed only on ports of application hosts, operating systems, and web server software utilized in the course of performing Services for SunTrust. Testing will emulate tactics used by outside attackers with and without knowledge of specific applications, and with malicious intent, however, no such tactic shall interrupt services (e.g., denial of service attacks). Testing will not include the following actions or methods: changes to assigned user passwords; telephone modem probes and scans (active and passive); intentional viewing of email content, internet caches, and/or cookie files; or DoS attacks (smurf, land, SYN flood, etc.). Such audits and reviews may be performed by SunTrust, its agent, or an independent third party bound by a nondisclosure provision substantially similar to that set forth above in this Agreement, and may include reasonable testing of the Security Systems, including periodic vulnerability scans. Upon request, SunTrust shall provide to FMC the results of, and any data obtained from, such vulnerability assessment. Any such information security tests will be scheduled by mutual agreement of the Parties. FMC will provide SunTrust with such reasonable assistance and information as may be necessary for the performance of such testing. SunTrust will use reasonable, industry-standard precautions to prevent or minimize any risks to FMC’s Security Systems that may be associated with such testing, and the Parties will cooperate in structuring the testing so as to avoid harming the rights and interests of FMC or any third parties. FMC agrees to promptly grant reasonable access to logs, policies, records, other materials, and FMC Personnel reasonably required for SunTrust to perform the audit. SunTrust will reasonably determine the extent and methodology of the testing subject to the approval of FMC, such approval not to be unreasonably withheld. Further, FMC agrees to make available to SunTrust the results of any third party’s ...
Audit Scope. The Contractor shall perform the following:
Audit Scope. To request an audit, Company must provide Seagate thirty (30) calendar days prior written notice and submit to Seagate a proposed audit plan describing the proposed scope, duration, and start date of the audit. Seagate will review the proposed audit plan and provide Company with any concerns or questions (for example, any request for information that could compromise Seagate or Seagate Affiliate’s security, privacy, employment or other relevant policies). Seagate will work cooperatively with Company to agree on a final audit plan.
Audit Scope. The audit referred to in clause 6.5 of this Database Licence will cover the following items insofar as the Inspector reasonably determines that they are relevant solely to verify that they are managed in a manner that facilitates compliance with the Image Data Service Hybrid Security Features set out in Appendix 8 and the specific obligations set out in clause 6 of this Database Licence. The Audit shall not include commenting on any aspect of the Licensee's operations that are not materially relevant to the Security Features or obligations. Plan and Organise o Define the Information Architecture Enterprise information Architecture Data Dictionary Data Classification Integrity Management o Define the IT Processes, Organisation and Relationships IT Organisational Structure Roles and Responsibilities Risk and Security Management responsibility Data and System Ownership Segregation of Duties o Manage Quality Standards and Practices Development and acquisitions standards o Assess and Manage IT Risks IT and Business Risk Management alignment Risk Management Plans o Manage Projects Project Management framework o Manage Changes Change Standards and Procedures Impact assessment Management of emergency changes Change status tracking and reporting Documentation and Closure procedures o Install and Accredit Solutions and Changes Training Testing Implementation Test Environment Data Conversion Change Testing User Acceptance Testing Promotion to Production Control Post Implementation Reviews Deliver and Support o Manage Third-party Services Supplier Risk Management Security NDA Supplier performance Monitoring Performance against contractual agreements o Ensure Continuous Service (DR) Backup and storage facilities o Ensure Systems Security IT Security Plan Identity Management Internal, External and Temporary accounts User Access Rights User Account Management Procedures for Starters, Leavers and changes to users accounts Account policies – Password, Lockouts, Timeouts Audit Policies Security testing and monitoring Security Incident Management Protection of security technologies Restricting access to security devices Restricting access to security documentation Network security Firewalls Security appliances Network segmentation Intrusion Detection Exchange of sensitive data o Manage the Configuration Configuration Repository and baseline Configuration Integrit...
Audit Scope. 2.1 Turquoise audits Customers, End Customers, Redistributors, Service Facilitators, and third party recipients of the Data.
Audit Scope. 19. The auditor may, acting objectively and with reasonable notice, extend an audit of a physician's practice to cover fee codes that were not originally selected if the audit results suggest potential for additional incorrect xxxxxxxx. The reasons for extending the fee codes audited must be provided to the physician with the notice of the extension and cannot be challenged as a part of the Audit and Appeal process.
Audit Scope. The Contractor shall perform the following: The Contractor shall conduct the audit in accordance with (i) generally accepted auditing standards adopted by the American Institute of Certified Public Accountants and (ii) the standards applicable to financial audits contained in Government Auditing Standards, issued by the Comptroller General of the United States. The Contractor shall opine on the presentation of the Entity’s financial statements in accordance with the Entity’s applicable financial reporting framework prescribed at Section 2-7-504, MCA. If the Contractor’s opinion on the Entity’s financial statements is other than unmodified, the Contractor shall fully discuss the reasons with the Entity in advance of issuing a report. If, for any reason, the Contractor is unable to complete the audit or is unable to form or has not formed an opinion, the Contractor may decline to express an opinion or decline to issue a report as a result of the engagement.
Audit Scope. Solely to assess the effective protection of Lender Proprietary Information, Lender may conduct annual remote or on-site audits of Servicer, at Lender’s discretion and expense (except as set forth below), to review the Security Systems at any time during Servicer’s regular business hours upon at least three (3) CERTAIN CONFIDENTIAL MATERIAL APPEARING IN THIS DOCUMENT, MARKED BY [*****] HAS BEEN OMITTED AND FILED SEPARATELY WITH THE SECURITIES AND EXCHANGE COMMISSION PURSUANT TO RULE 406 PROMULGATED UNDER THE SECURITIES ACT OF 1933, AS AMENDED Business Days’ prior notice to Servicer; however, Servicer may request up to an additional seven (7) Business Days to comply. However, if there is an actual breach of the Security Systems, Lender may conduct additional audits. The audits may be performed by Lender, its agent, or an independent third party bound by nondisclosure provisions substantially similar to those in this Origination Agreement, and may include reasonable testing of the Security Systems, including without limitation, periodic vulnerability scans. The Parties will schedule the testing at a mutually agreeable time and will cooperate in structuring the tests so as to use reasonable, industry-standard precautions to minimize risks to the Security Systems and to avoid harming the rights and interests of Servicer or any third parties. Servicer will provide Lender with reasonable assistance and information necessary for the performance of the testing, including reasonable access to its logs, policies, records, and other materials (solely as related to Lender Proprietary Information), and to Servicer personnel reasonably required for Lender to perform the audit. Lender will reasonably determine the extent and methodology of the testing subject to the approval of Servicer, the approval not to be unreasonably withheld, conditioned or delayed. Servicer agrees to make available to Lender the results of any third party’s or its own testing, monitoring and auditing of the Security Systems solely as relates to Lender Proprietary Information, provided, that Servicer will not be required to make available any results which would breach its confidentiality obligations to any third party.
Audit Scope. This audit sought to ensure that a contract award for the 2009 renewal of a collective purchase agreement to provide and distribute office supplies took business unit needs into account, complied with all applicable contract-award rules and ensured a fair competitive bidding process for all potential suppliers. The audit also examined if the amounts subsequently invoiced to the city’s business units matched those specified in the agreement. Our audit primarily focused on 2008, 2009 and the first 10 months of 2010, as well as on the Direction de l’approvisionnement. However, to verify certain operational aspects of the purchases made under this purchase agreement, we also examined invoices issued by the administrative units of the following four business units: • Saint-Xxxxxxx borough, Direction des services administratifs—Division des ressources financières, matérielles et informationnelles • Ville-Xxxxx borough, Direction des services administratifs, du greffe et des relations avec les citoyens—Division des ressources financières et matérielles • Service des affaires juridiques et de l’évaluation foncière, Direction principale—Division de l’administration • Service du développement et des opérations, Direction de l’administration—Division de l’administration
