Penetration Testing and Vulnerability Detection Sample Clauses

The Penetration Testing and Vulnerability Detection clause establishes requirements for conducting security assessments on systems or networks to identify potential weaknesses. Typically, it outlines the conditions under which penetration tests may be performed, such as requiring prior notice, defining the scope of testing, and specifying who is authorized to conduct such tests. This clause ensures that security vulnerabilities are proactively identified and addressed, thereby reducing the risk of unauthorized access or data breaches.
Penetration Testing and Vulnerability Detection. ▇▇▇▇▇▇ regularly conducts penetration tests throughout the year and engages one or more independent third parties to conduct penetration tests of the services at least annually.
View SourceView Similar (6)

Related to Penetration Testing and Vulnerability Detection

  • Infrastructure Vulnerability Scanning Supplier will scan its internal environments (e.g., servers, network devices, etc.) related to Deliverables monthly and external environments related to Deliverables weekly. Supplier will have a defined process to address any findings but will ensure that any high-risk vulnerabilities are addressed within 30 days.

  • Evaluation, Testing, and Monitoring 1. The System Agency may review, test, evaluate and monitor Grantee’s Products and services, as well as associated documentation and technical support for compliance with the Accessibility Standards. Review, testing, evaluation and monitoring may be conducted before and after the award of a contract. Testing and monitoring may include user acceptance testing. Neither the review, testing (including acceptance testing), evaluation or monitoring of any Product or service, nor the absence of review, testing, evaluation or monitoring, will result in a waiver of the State’s right to contest the Grantee’s assertion of compliance with the Accessibility Standards. 2. Grantee agrees to cooperate fully and provide the System Agency and its representatives timely access to Products, records, and other items and information needed to conduct such review, evaluation, testing, and monitoring.

  • Intrusion Detection All systems involved in accessing, holding, transporting, and protecting DHCS PHI or PI that are accessible via the Internet must be protected by a comprehensive intrusion detection and prevention solution.

  • Vulnerability Management BNY Mellon will maintain a documented process to identify and remediate security vulnerabilities affecting its systems used to provide the services. BNY Mellon will classify security vulnerabilities using industry recognized standards and conduct continuous monitoring and testing of its networks, hardware and software including regular penetration testing and ethical hack assessments. BNY Mellon will remediate identified security vulnerabilities in accordance with its process.

  • Polygraph Tests The Employer agrees that polygraph or similar lie detector tests will not be used.