Vulnerability Management BNY Mellon will maintain a documented process to identify and remediate security vulnerabilities affecting its systems used to provide the services. BNY Mellon will classify security vulnerabilities using industry recognized standards and conduct continuous monitoring and testing of its networks, hardware and software including regular penetration testing and ethical hack assessments. BNY Mellon will remediate identified security vulnerabilities in accordance with its process.
Staffing Consultant will designate in writing to Authority its representative, and the manner in which it will provide staff support for the project, which must be approved by Authority. Consultant must notify Authority’s Contract Representative of any change in personnel assigned to perform work under this Contract, and the Authority’s Contract Representative has the right to reject the person or persons assigned to fill the position or positions. The Authority’s Contract Representative shall also have the right to require the removal of the Consultant’s previously assigned personnel, including Consultant’s representative, provided sufficient cause for such removal exists. The criteria for requesting removal of an individual will be based on, but not limited to, the following: technical incompetence, inability to meet the position’s qualifications, failure to perform, poor attendance, ethics violation, unsafe work habits, or damage to Authority or other property. Upon notice for removal, Consultant shall replace such personnel with personnel substantially equal in ability and qualifications for the positions and shall submit the proposed replacement personnel qualification and abilities to the Authority, in writing, for approval.
Virus Management Transfer Agent shall maintain a malware protection program designed to deter malware infections, detect the presence of malware within the Transfer Agent environment.
Competencies The following competencies apply to this position. The employee will be assessed against these as part of their annual performance and development review.
Emergency Situation In the event of an emergency situation beyond our reasonable control, such as an "act of God," war, fire, or natural disaster, services involving your account could be available only in a modified or reduced form or could be entirely unavailable. Unless expressly prohibited by applicable law, you agree that we will have no liability to you for such modification, reduction, or unavailability of services caused by an emergency situation.
Configuration Management The Contractor shall maintain a configuration management program, which shall provide for the administrative and functional systems necessary for configuration identification, control, status accounting and reporting, to ensure configuration identity with the UCEU and associated cables produced by the Contractor. The Contractor shall maintain a Contractor approved Configuration Management Plan that complies with ANSI/EIA-649 2011. Notwithstanding ANSI/EIA-649 2011, the Contractor’s configuration management program shall comply with the VLS Configuration Management Plans, TL130-AD-PLN-010-VLS, and shall comply with the following:
Service Management Effective support of in-scope services is a result of maintaining consistent service levels. The following sections provide relevant details on service availability, monitoring of in-scope services and related components.