Laserfiche WebLink
<br /> <br /> <br /> <br />Within sixty (60) days prior to the start date of City’s Term, and regularly throughout the Term thereafter, Govstream shall <br />perform authenticated internal vulnerability assessment of the network and systems to identify p otential weaknesses and <br />inconsistencies with their general security policy and, upon reasonable request, shall provide reasonable evidence to the Cit y <br />that such testing has been performed. <br />Govstream must implement a system to monitor and handle denial of service attacks, and other such threats, that would limit <br />Govstream’s access to the Service. <br />The City reserves the right to perform external scans of the Software environment at their expense to the extent necessary to <br />ensure compliance with the terms of th is Agreement. Govstream agrees to reasonably cooperate in the performance of such <br />scans. <br />Govstream will be required to complete a risk assessment questionnaire prior to the start date of City’ Term and shall update <br />the questionnaire annually throughout the Term thereafter. <br />Definitions <br />“AES” means Advanced Encryption Standard. <br />“CJIS” means Criminal Justice Information System. <br />“DR” means Disaster Recovery. <br />“GDPR” means General Data Protection Regulation. <br />“HIPAA” means Health Insurance Portability and Accountability Act . <br />“IDS” means Intrusion Detection System. <br />“NIST” means National Institute of Standards and Technology. <br />“PCI” means Payment Card Industry. <br />“PII” means Personally Identifiable Information. <br />“RPO” means Recovery Point Objective. <br />“RTO” means Recovery Time Objective. <br />“SAML” means Security Assertion Markup Language. <br />“SLA” means Service Level Agreement. <br />“SOC” means System and Organization Controls. <br />“TLS” means Transport Layer Security. <br /> <br />