Ongoing Security Testing Sample Clauses
The Ongoing Security Testing clause requires that regular assessments of a system's security are conducted throughout the duration of an agreement or project. This typically involves periodic vulnerability scans, penetration testing, or other security evaluations to identify and address potential weaknesses as they arise. By mandating continuous security checks, the clause helps ensure that security standards are maintained over time and that emerging threats are promptly managed, thereby reducing the risk of data breaches or system compromise.
Ongoing Security Testing. Vendor will periodically test its systems for potential areas where security could be breached. During the term, to the extent Vendor engages a Third Party auditor to perform an SSAE 16 of Vendor’s operations, information security program, and/or disaster recovery/business continuity plan, Vendor shall promptly furnish a copy of the test report or audit report to OCIO. In addition, Vendor shall disclose its non-proprietary security processes and technical limitations to OCIO to enable OCIO to identify compensating controls necessary to adequately safeguard and protect Customer Data. For example, Vendor shall disclose its security processes with respect to virus checking and port sniffing to OCIO.
Ongoing Security Testing. Vendor will periodically test its systems for potential areas where security could be breached. During the term, to the extent Vendor engages a Third Party auditor to perform an SSAE 16 of Vendor’s operations, information security program, and/or disaster recovery/business continuity plan, Vendor shall promptly furnish a copy of the test report or audit report to OCIO or its Authorized Contractors. In addition, Vendor shall disclose its non- proprietary security processes and technical limitations to OCIO or its Authorized Contractors to enable OCIO to identify compensating controls necessary to adequately safeguard and protect Customer Data, or to otherwise assist OCIO or any other Governmental Entity in complying with any laws, rules, regulations, orders, or corresponding audits. For example, Vendor shall disclose its security processes with respect to virus checking and port sniffing to OCIO.
Ongoing Security Testing. Vendor will periodically test its systems for potential areas where security could be breached. During the Term, to the extent Vendor engages a Third Party auditor to perform an SSAE 16 of Vendor’s operations, information security program, and/or disaster recovery/business continuity plan, Vendor shall promptly furnish a copy of the test report or audit report to the State or Governmental Entity. In addition, Vendor shall disclose its non-proprietary security processes and technical limitations to the State or Governmental Entity to enable the State or Governmental Entity to identify compensating controls necessary to adequately safeguard and protect Customer Data. For example, Vendor shall disclose its security processes with respect to virus checking and port sniffing to the State or Governmental Entity.
Ongoing Security Testing. Vendor will periodically test its systems for potential areas where security could be breached. In addition, Vendor shall disclose its non-proprietary security processes and technical limitations to OCIO to enable OCIO to identify compensating controls necessary to adequately safeguard and protect Customer Data. For example, Vendor shall disclose its security processes with respect to virus checking and port sniffing to OCIO.