IT Security Certification and Accreditation Clause Samples
The IT Security Certification and Accreditation clause establishes requirements for verifying and formally approving the security measures of information technology systems. Typically, this involves subjecting systems to security assessments, audits, or compliance checks to ensure they meet specified standards before being put into operation or after significant changes. By mandating this process, the clause helps ensure that only secure and compliant systems are used, thereby reducing the risk of security breaches and ensuring regulatory or organizational standards are consistently met.
IT Security Certification and Accreditation. (IT-SC&A) In accordance with HHSAR Clause 352.239-72, Security Requirements for Federal Information Technology Resources, the Contractor shall submit written proof to the Contracting Officer that an IT-SC&A was performed within three (3) months after contract award. The Contractor shall perform an annual security control assessment and provide to the Contracting Officer verification that the IT-SC&A remains valid. (Reference subparagraph D.c.4 of the Information and Physical Access Security clause in Article H.7 of Section H of this contract.)
IT Security Certification and Accreditation. (IT-SC&A)