My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
Item 26 - Agreement with Allied Network Solutions, Inc. for Adobe Software and Subscription
Clerk
>
Agenda Packets / Staff Reports
>
City Council (2004 - Present)
>
2025
>
01/21/2025
>
Item 26 - Agreement with Allied Network Solutions, Inc. for Adobe Software and Subscription
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
1/27/2025 5:03:20 PM
Creation date
1/21/2025 2:16:24 PM
Metadata
Fields
Template:
City Clerk
Doc Type
Agenda Packet
Agency
Information Technology
Item #
26
Date
1/21/2025
Jump to thumbnail
< previous set
next set >
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
762
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
SOLICITATION # CH16012 <br />Authority to Operate with both OPM and NTIS. We are compliant with EU Privacy <br />Directive 95/46/EC and are Safe Harbor self -certified. <br />https://safeharbor.export.gov/companyinfo.aspx?id=26196We are aligned with ISO <br />27001 for Information Security, BS 10012 for Data Protection, and ISO 20000 for <br />Service Delivery to create an Integrated Compliance Framework ("ICF"). Where <br />these standards overlap in subject matter, Information Security ISO 27001 takes <br />precedence. Our Network also complies with Authority to Operate as a Moderate <br />Risk Federal Information System by the Office of Personnel Management and <br />Department of Homeland Security; NIST SP800-53 Security Controls; EU Privacy <br />Directive 95/46/EC for EU and non-EU customer data; Payment Card Industry <br />(PCI) Data Security Standard (DSS) v 2.0; Safe Harbor. <br />We are aligned with ISO 27001 for Information Security, BS 10012 for Data <br />Protection, and ISO 20000 for Service Delivery to create an Integrated Compliance <br />Framework ("ICF"). Where these standards overlap in subject matter, Information <br />Security ISO 27001 takes precedence. Our Network also complies with Authority to <br />Operate as a Moderate Risk Federal Information System by the Office of Personnel <br />Management and Department of Homeland Security; NIST SP800-53 Security <br />Controls; EU Privacy Directive 95/46/EC for EU and non-EU customer data; <br />Pavment Card Industry (PCh Data Securitv Standard (DSS) v 2.0: Safe Harbor. <br />VMware VMware IaaS Services <br />ISO/IEC 27001: ISO/IEC 27001 is a globally recognized standard for the establishment and <br />certification of an information security management system (ISMS). vCloud Air continues to maintain a <br />current ISO/IEC 27001 Certification and has recently issued updated certification for ISO/IEC <br />27001:2013. Achieving certification means that VMware has implemented a holistic security program <br />that conforms with the ISO 27001 standard requirements, both in the security management system <br />and control activities. The audit of the ISMS was completed by Brightline CPAs and Associates - an <br />ANAB accredited certification body. <br />HIPAA: The Health Insurance Portability and Accountability Act of 1996(HIPAA), which has <br />incorporated requirements from the Health Information Technology for Economic and Clinical Health <br />Act (HITECH) of 2009, established national standards for the security and privacy of Protected Health <br />Information (PHI) in the United States. To help customers comply with HIPAA, VMware offers a <br />Business Associate Agreement (BAA) to all interested customers using our US -based data centers. <br />The BAA was designed in conjunction with a leading law firm with expertise in HIPAA and provides <br />fair and reasonable terms for healthcare providers, insurers, and other organizations. VMware has <br />completed an independent third party examination of vCloud Air against applicable controls of HIPAA. <br />SOC 1 (SSAE16/ISAE 3402): Service Organization Control (SOC) 1 reports are conducted in <br />accordance with Statement on Standards for Attestation Engagements (SSAE) No. 16 put forth by the <br />Auditing Standards Board (ASB) of the American Institute of Certified Public Accountants (AICPS). <br />The SOC 1 framework reports on internal controls over financial reporting for any service organization <br />such as VMware vCloud Air. SOC 1 aligns to the International Standard on Assurance Engagements <br />(ISAE) 3402 international reporting standards. SOC 1 examinations are specifically intended to meet <br />the needs of the managements of vCloud Air's customers and vCloud Air's customers' auditors, as <br />they evaluate the effect of the controls at vCloud Air on the clients' financial statement assertions. <br />VMware has completed an independent third -party examination of vCloud Air which spans a twelve <br />(12) month review period. <br />SOC 2: The Service Organization Control 2 (SOC 2) report is composed of a comprehensive set of <br />criteria on security, availability, processing integrity, confidentiality, and privacy and is similarly set <br />forth by the America Institute of Certified Public Accountants (AICPA). The SOC 2 reports are <br />carahsoft 57 carahsoft <br />
The URL can be used to link to this page
Your browser does not support the video tag.