Standards Description. American Express MSB requirements are derived in part from the United States Government’s Trusted Computer System Evaluation Criteria (TCSEC) Controlled Access Protection (“C2”) requirements. These requirements have been modified to reflect current computer industry “Best Practices” and security considerations. This was done to ensure that American Express computing security requirements are compliant with globally-accepted standards for “trusted” systems. The MSB is structured according to an eight part model. The figure below identifies the components of the model and depicts their relationship.
Appears in 2 contracts
Sources: Service Bureau Agreement (TRX Inc/Ga), Service Bureau Agreement (TRX Inc/Ga)