Remote Password Reset Standard
|
|
- Ashlynn Dennis
- 7 years ago
- Views:
Transcription
1 Infrmatin Technlgy Remte Passwrd Reset Standard Identifier: Apprved Date: Octber 21, 2016 Revisin Date: Octber 21, 2016 Effective Date: December 1, 2016 Apprved by: Je Tlisan Standard Table f Cntents 1. Intrductin Purpse Scpe Definitins Rles and Respnsibilities Standards Training and Access Requirements Cmmunity Cllege Remte Passwrd Reset Prcess CSU and COSC Remte Passwrd Reset Prcess Cntrl Metrics Cntrl Tests Exceptins Related Publicatins Revisin Histry... 6
2 1. Intrductin A faculty member, staff member r student at ne f the Cnnecticut State Clleges and Universities (CSCU) may be unable t reset a passwrd using the autmated, self-service passwrd reset system because they d nt have the required data, data is nt available in the Infrmatin System t verify their identity r they are nt authrized t use the self-service system. In these cases, the individual will need t cntact their institutin t have their passwrd reset. The CSCU system needs t verify the individual s identity prir t the passwrd reset and cmply with the state and federal requirements n identity management. 2. Purpse Prvide a mechanism fr faculty, staff and students t have their passwrds reset via remte cmmunicatin, verifying the individual s identity, while maintaining the security cntrls and meeting ur federal and state regulatry requirements. 3. Scpe This applies t all CSCU cnstituent units. 4. Definitins Identity Data Identity data is any cmbinatin f infrmatin that will identify wh yu are. Typical identity data sets are first and last name, first initial and last name, first name and address. DCL3 Data DCL3 Previusly knwn as Class A Prtected at the CSUS Level 3 is prtected cnfidential data, which cmprises identity and financial data that, if imprperly disclsed, culd be used fr identity theft r t cause financial harm t an individual r the CSCU System. Security at this level is very high (highest pssible). Examples f DCL3 data are: Scial Security number & Identity Data Bank accunt r debit card infrmatin and Identity Data Credit card number & cardhlder infrmatin Student Lan Data DCL3 data must be prtected frm disclsure and maleficence. Remte Passwrd Reset Standard 2 f 6
3 DCL2 Data DCL2 Previusly knwn as Class A at the CSUS Level 2 is restricted data that is available fr disclsure, and may be disclsed under certain circumstances e.g. FOIA, legal request, etc. Such infrmatin is restricted due t federal and state law, ethical and privacy cnsideratins. An example f such restrictins wuld be the FERPA guidelines that gvern publicatin and disclsure f student infrmatin. Security at this level is high. Examples f DCL2 data are: Mther s maiden name Academic recrds Emplyee Medical Recrds Red Flag Rules In 2003, the U.S. Cngress enacted the Fair and Accurate Credit Transactin Act f 2003 (FACT Act) which required the Federal Trade Cmmissin (FTC) t issue regulatins requiring creditrs t adpt plicies and prcedures t prevent identify theft. In 2007, the Federal Trade Cmmissin (FTC) issued a regulatin knwn as the Red Flag Rule. The rule requires financial institutins and creditrs hlding cvered accunts t develp and implement a written identity theft preventin prgram designed t identify, detect and respnd t Red Flags, patterns, practices r specific activities that indicate the pssible existence f identity theft. Infrmatin Security User Educatin and Awareness Training A CSCU Infrmatin Security User Educatin and Awareness Training prgram that meets the minimum training requirements fr access t DCL3 data. CSCU Identity Management and Red Flags Training The CSCU curse n Identify Management, Infrmatin Security and the identificatin f Red Flags fr pssible identity theft. Assurance Functin Assurance is the respnsibility f the system wner and is the prcess the system wner uses t verify that bth technical and administrative cntrls are functining crrectly. Remte Passwrd Reset Standard 3 f 6
4 5. Rles and Respnsibilities CSCU Emplyee - CSCU emplyees with a minimum f DCL2 data access. Student Student in the CSCU system Faculty Faculty in the CSCU system Staff Staff in the CSCU system 6. Standards 6.1. Training and Access Requirements Only CSCU emplyees wh have DCL3 data access with the apprpriate training will be granted access t change passwrds fr faculty and staff. Only CSCU emplyees wh have DCL2 data access with the apprpriate training will be granted access t change passwrds fr students. All CSCU emplyees with access t change accunt passwrds remtely will need t have attended an Infrmatin Security User Educatin and Awareness Training class that meets the CSCU training standard Cmmunity Cllege Remte Passwrd Reset Prcess The authrized CSCU emplyee verifies the individual s identity by verbally requesting the first and last name f the individual, the CSCU faculty/staff/student identifier, e.g. CCC NetID, and last fur digits f the SSN with at least 1 f the fllwing identificatin elements cmparing it t the data in the verificatin system (e.g. Banner). Date f Birth Address n file Telephne number n file The passwrd will be reset t a randm passwrd that is verbally cmmunicated. The fllwing minimum infrmatin must be lgged by the reset prcess: wh perfrmed the reset, Banner ID f individual whse passwrd was reset, Date & Time reset ccurred. After a passwrd reset, the individual will be required t change their passwrd immediately upn a successful lgin r access t system resurces will be denied. Security questins and answers will be cleared and the individual will be required t establish a new security questin and answer immediately upn a successful lgin r access t system resurces will be denied. Any Red Flags during the passwrd reset will stp the prcess. Fr the passwrd t be reset ver the phne the individual needs t be transferred t a staff member with full Banner Access wh can verify the cmplete SSN and any additinal infrmatin required under Red Flags. Remte Passwrd Reset Standard 4 f 6
5 6.3. CSU and COSC Remte Passwrd Reset Prcess The authrized CSCU emplyee verifies the individual s identity by verbally requesting the first and last name f the individual, the CSCU faculty/staff/student identifier, e.g. CCSU BlueNet ID, SCSU - Ht Lt ID Card with at least 2 f the fllwing identificatin elements cmparing it t the data in the verificatin system (e.g. Banner). Last fur f SSN Date f Birth Address n file Telephne number n file The passwrd will be reset t a randm passwrd that is verbally cmmunicated. The fllwing minimum infrmatin must be lgged by the reset prcess: wh perfrmed the reset, Banner ID f individual whse passwrd was reset, Date & Time reset ccurred. After a passwrd reset, the individual will be required t change their passwrd immediately upn a successful lgin r access t system resurces will be denied. Security questins and answers will be cleared and the individual will be required t establish a new security questin and answer immediately upn a successful lgin r access t system resurces will be denied. Any Red Flags during the passwrd reset will stp the prcess. Fr the passwrd t be reset ver the phne the individual needs t be transferred t a staff member with full Banner Access wh can verify the cmplete SSN and any additinal infrmatin required under Red Flags. 7. Cntrl Metrics Quarterly reprts will be run t determine the number f passwrds resets perfrmed remtely, including the number unable t be reset during the Remte Passwrd Reset Prcess. A reprt n Red Flag events during each quarter will als be included. 8. Cntrl Tests Quarterly, an assurance functin will attempt 5 remte passwrd resets using Test Banner Accunts. Any deviatins frm the Student Remte Passwrd Reset Standard will be dcumented and reprted t management. 9. Exceptins T request an exceptin, please submit the Infrmatin Security Exceptin request t SecPrg@ct.edu The requestr and BOR Infrmatin Security Prgram Office will define the apprved alternative cnfiguratin if different than the riginal prpsal f the requestr. The exceptin prcess is NOT an alternative t the Change Cntrl Management prcess. Remte Passwrd Reset Standard 5 f 6
6 10. Related Publicatins Related Plicies BOR Infrmatin Security Plicy Related Prcedures Requesting r Revking Access t the GWANTID Frm User Guide fr the GWANTID frm Web Sites Supprt Services Website 11. Revisin Histry Previus versins f this standard September 16, 2014 Histry f Changes Nne Standards superseded by this standard Nne Remte Passwrd Reset Standard 6 f 6
THE CITY UNIVERSITY OF NEW YORK IDENTITY THEFT PREVENTION PROGRAM
THE CITY UNIVERSITY OF NEW YORK IDENTITY THEFT PREVENTION PROGRAM 1. Prgram Adptin The City University f New Yrk (the "University") develped this Identity Theft Preventin Prgram (the "Prgram") pursuant
More informationFAFSA / DREAM ACT COMPLETION PROGRAM AGREEMENT
FAFSA / DREAM ACT COMPLETION PROGRAM AGREEMENT If using US Pstal Service, please return t: Califrnia Student Aid Cmmissin Prgram Administratin & Services Divisin ATTN: Institutinal Supprt P.O. Bx 419028
More informationGUIDANCE FOR BUSINESS ASSOCIATES
GUIDANCE FOR BUSINESS ASSOCIATES This Guidance fr Business Assciates dcument is intended t verview UPMCs expectatins, as well as t prvide additinal resurces and infrmatin, t UPMC s HIPAA business assciates.
More informationKey Steps for Organizations in Responding to Privacy Breaches
Key Steps fr Organizatins in Respnding t Privacy Breaches Purpse The purpse f this dcument is t prvide guidance t private sectr rganizatins, bth small and large, when a privacy breach ccurs. Organizatins
More informationWHAT YOU NEED TO KNOW ABOUT. Protecting your Privacy
WHAT YOU NEED TO KNOW ABOUT Prtecting yur Privacy YOUR PRIVACY IS OUR PRIORITY Credit unins have a histry f respecting the privacy f ur members and custmers. Yur Bard f Directrs has adpted the Credit Unin
More informationRequest for Resume (RFR) CATS II Master Contract. All Master Contract Provisions Apply
Sectin 1 General Infrmatin RFR Number: (Reference BPO Number) Functinal Area (Enter One Only) F50B3400026 7 Infrmatin System Security Labr Categry A single supprt resurce may be engaged fr a perid nt t
More informationSecurity Services. Service Description Version 1.00. Effective Date: 07/01/2012. Purpose. Overview
Security Services Service Descriptin Versin 1.00 Effective Date: 07/01/2012 Purpse This Enterprise Service Descriptin is applicable t Security Services ffered by the MN.IT Services and described in the
More informationAudit Committee Charter. St Andrew s Insurance (Australia) Pty Ltd St Andrew s Life Insurance Pty Ltd St Andrew s Australia Services Pty Ltd
Audit Cmmittee Charter St Andrew s Insurance (Australia) Pty Ltd St Andrew s Life Insurance Pty Ltd St Andrew s Australia Services Pty Ltd Versin 2.0, 22 February 2016 Apprver Bard f Directrs St Andrew
More informationHow To Get A Credit By Examination
LAW ENFORCEMENT TECHNOLOGY CREDIT BY EXAMINATION FACT SHEET Texas Ri Salad Cllege, a Maricpa Cunty Cmmunity Cllege in Tempe, Arizna, is prud t annunce its Credit by Examinatin prgram in Law Enfrcement
More informationVCU Payment Card Policy
VCU Payment Card Plicy Plicy Type: Administrative Respnsible Office: Treasury Services Initial Plicy Apprved: 12/05/2013 Current Revisin Apprved: 12/05/2013 Plicy Statement and Purpse The purpse f this
More informationPersonal Data Security Breach Management Policy
Persnal Data Security Breach Management Plicy 1.0 Purpse The Data Prtectin Acts 1988 and 2003 impse bligatins n data cntrllers in Western Care Assciatin t prcess persnal data entrusted t them in a manner
More informationAUDIT AND RISK COMMITTEE TERMS OF REFERENCE
AUDIT AND RISK COMMITTEE TERMS OF REFERENCE 1. TITLE OF COMMITTEE Audit and Risk Cmmittee 2. ESTABLISHMENT The Audit and Risk Cmmittee is established under Part 3 Sectin 19(1) f the Charles Darwin University
More informationOnline Banking Agreement
Online Banking Agreement 1. General This Online Banking Agreement, which may be amended frm time t time by us (this "Agreement"), fr accessing yur Clrad Federal Savings Bank accunt(s) via the Internet
More informationFAYETTEVILLE STATE UNIVERSITY
FAYETTEVILLE STATE UNIVERSITY IDENTITY THEFT PREVENTION (RED FLAGS RULE) Authrity: Categry: Issued by the Fayetteville State University Bard f Trustees. University-Wide Applies t: Administratrs Faculty
More informationNAIC Replacement Requirements For Certain Life Insurance Policies And Annuity Contracts
NAIC Replacement Requirements Fr Certain Life Insurance Plicies And Annuity Cntracts Duties f Prducers If a transactin invlves a replacement, the prducer must leave with the applicant, at the time an applicatin
More informationHIPAA Compliance 101. Important Terms. Pittsburgh Computer Solutions 724-942-1337
HIPAA Cmpliance 101 Imprtant Terms Cvered Entities (CAs) The HIPAA Privacy Rule refers t three specific grups as cvered entities, including health plans, healthcare clearinghuses, and health care prviders
More informationNYU Langone Medical Center NYU Hospitals Center NYU School of Medicine
Title: Identity Theft Prgram Effective Date: July 2009 NYU Langne Medical Center NYU Hspitals Center NYU Schl f Medicine POLICY It is the plicy f the NYU Langne Medical Center t educate and train staff
More informationTexas Woman's University University Policy Manual
Texas Wman's University University Plicy Manual Plicy Name: Plicy Number: 6.06 Date Passed: July 2004 Health Insurance Prtability& Accuntability Act (HIPAA) Date Reviewed: September 2008 Next Review: September
More informationCLEARANCE REVIEWS FOR STUDENT RESTRICTION ISSUES OTHER THAN ACADEMIC PROGRESS
CLEARANCE REVIEWS FOR STUDENT RESTRICTION ISSUES OTHER THAN ACADEMIC PROGRESS Only the Ministry f Training, Clleges & Universities can cnsider clearance reviews fr mst ther student restrictin issues. These
More informationChange Management Process For [Project Name]
Management Prcess Fr [Prject Name] i 1 Intrductin The is fllwed during the Executin phase f the Prject Management Life Cycle, nce the prject has been frmally defined and planned. 1.1 What is a Management
More information1.2 Supporting References For information relating to the Company Hardware Request project, see the SharePoint web site.
Hardware Request System Visin 1 Intrductin 1.1 Dcument Purpse and Scpe This dcument utlines the visin fr the Hardware Request system. The purpses f this dcument are t: Identify and agree n the prblems
More informationIT Account and Access Procedure
IT Accunt and Access Prcedure Revisin Histry Versin Date Editr Nature f Change 1.0 3/23/06 Kelly Matt Initial Release Table f Cntents 1.0 Overview... 1 2.0 Purpse... 1 3.0 Scpe... 1 4.0 Passwrds... 1 4.1
More informationRATIONALE TERMS OF REFERENCE FOR THE QUALITY COMMITTEE UNDER THE EXCELLENT CARE FOR ALL ACT. Authority
RATIONALE With the intrductin f the Excellent Care fr All Act, hspital bards must nw have a quality cmmittee that reprts t the bard. The template prvides sample terms f references fr rganizatins t adapt
More informationVersion: Modified By: Date: Approved By: Date: 1.0 Michael Hawkins October 29, 2013 Dan Bowden November 2013
Versin: Mdified By: Date: Apprved By: Date: 1.0 Michael Hawkins Octber 29, 2013 Dan Bwden Nvember 2013 Rule 4-004J Payment Card Industry (PCI) Patch Management (prpsed) 01.1 Purpse The purpse f the Patch
More informationBLUE RIDGE COMMUNITY AND TECHNICAL COLLEGE BOARD OF GOVERNORS
BLUE RIDGE COMMUNITY AND TECHNICAL COLLEGE BOARD OF GOVERNORS SERIES: 1 General Rules RULE: 17.1 Recrd Retentin Scpe: The purpse f this rule is t establish the systematic review, retentin and destructin
More informationCell Phone & Data Access Policy Frequently Asked Questions
Cell Phne & Data Access Plicy Frequently Asked Questins 1. Wh is eligible fr a technlgy allwance? First and fremst, the technlgy allwance is fr the benefit f the University, rather than fr the cnvenience
More informationPurpose Statement. Objectives
Apprved by Academic Affairs Cuncil, June 24, 2014 Faculty Handbk Part VI: Other Plicies and Prcedures Sectin R. Intellectual Prperty Classified Emplyee Handbk Part VI: Other Plicies and Prcedures Sectin
More informationHIPAA HITECH ACT Compliance, Review and Training Services
Cmpliance, Review and Training Services Risk Assessment and Risk Mitigatin: The first and mst imprtant step is t undertake a hlistic risk assessment that examines the risks and cntrls related t fur critical
More informationWe will record and prepare documents based off the information presented
Dear Client: We appreciate the pprtunity f wrking with yu regarding yur Payrll needs. T ensure a cmplete understanding between us, we are setting frth the pertinent infrmatin abut the services that we
More informationEA-POL-015 Enterprise Architecture - Encryption Policy
Technlgy & Infrmatin Services EA-POL-015 Enterprise ure - Encryptin Plicy Authr: Craig Duglas Date: 17 March 2015 Dcument Security Level: PUBLIC Dcument Versin: 1.0 Dcument Ref: EA-POL-015 Dcument Link:
More informationTable of Contents. Welcome to Employee Self Service... 3 Who Do I Call For Help?... 3
ALABAMA STATE UNIVERSITY HUMAN RESOURCES EMPLOYEE SELF SERVICE USER GUIDE 2 Table f Cntents Welcme t Emplyee Self Service... 3 Wh D I Call Fr Help?... 3 Hw d I access Emplyee Self Service?... 4 Persnal
More informationTemplate on written coordination and cooperation arrangements of the supervisory college established for the <XY> Group/<A> Institution
COORDINATION AND COOPERATION ARRANGEMENTS EBA/RTS/2014/16 EBA/ITS/2014/07 Annex II Template n written crdinatin and cperatin arrangements f the supervisry cllege established fr the Grup/ Institutin
More informationBusiness Continuity Management Policy
The Public Trustee Business Cntinuity Management Plicy Octber 2015 Business Cntinuity Management Plicy Octber 2015 Page 1 f 6 Dcument Infrmatin Apprved Name Psitin Signature Date Mark Crftn A/Public Trustee
More informationHow To Write An Ehsms Training, Awareness And Competency Procedure
Envirnmental, Health & Safety Management System (EHSMS) Dcument Number: 00122 Issue Date: 05/07/2014 Training, Awareness and Cmpetency Prcedure Revisin Number: 7 Prepared By: Stalcup, Bryce Apprved By:
More informationIT CHANGE MANAGEMENT POLICY
IT CHANGE MANAGEMENT POLICY Effective Date May 19, 2016 Crss-Reference 1. IT Operatins and Maintenance Plicy 2. IT Security Incident Management Plicy Respnsibility Apprver Review Schedule 1. Plicy Statement
More informationInformation Security Policy
Purpse The risk t Charlestn Suthern University, its emplyees and students frm data lss and identity theft is f significant cncern t the University and can be reduced nly thrugh the cmbined effrts f every
More information5.2.1 Passwords. Information Technology Policy. Policy. Purpose. Policy Statement. Applicability of this Policy
Infrmatin Technlgy Plicy 5.2.1 Passwrds Plicy Area: 5.2 Security Title: 5.2.1 Passwrds Issued by: Assistant Vice-President/CIO, ITS Date Issued: 2006 July 24 Last Revisin Date: 2011 Octber 19 Apprved by:
More informationHow To Ensure Your Health Care Is Safe
Guidelines fr Custdians t assess cmpliance with the Persnal Health Infrmatin Privacy and Access Act (PHIPAA) This dcument is designed t help custdians evaluate readiness fr cmpliance with PHIPAA and t
More informationCreating an Ethical Culture and Protecting Your Bottom Line:
Creating an Ethical Culture and Prtecting Yur Bttm Line: Best Practices fr Crprate Cdes f Cnduct Nte: The infrmatin belw and all infrmatin n this website is nt meant t be taken as legal advice. Please
More informationACCREDITATION. Policy 60150: Substantive Change
ACCREDITATION Plicy 60150: Substantive Change 1. Purpse 2. Plicy The purpse f this plicy is t assist the Cllege with maintaining cmpliance with Cmprehensive Standard 3.12.1 f the Principles f Accreditatin
More informationChristchurch Polytechnic Institute of Technology Access Control Security Standard
CPIT Crprate Services Divisin: ICT Christchurch Plytechnic Institute f Technlgy Access Cntrl Security Standard Crprate Plicies & Prcedures Sectin 1: General Administratin Dcument CPP121a Principles Infrmatin
More informationInformation Security Incident Response Plan
Infrmatin Security Incident Respnse Plan Agency: Date: Cntact: 1 TABLE OF CONTENTS Intrductin... 3 Authrity... 4 Terms and Definitins... 4 Rles and Respnsibilities... 5 Prgram... 6 Educatin and Awareness...
More informationCOPIES-F.Y.I., INC. Policies and Procedures Data Security Policy
COPIES-F.Y.I., INC. Plicies and Prcedures Data Security Plicy Page 2 f 7 Preamble Mst f Cpies FYI, Incrprated financial, administrative, research, and clinical systems are accessible thrugh the campus
More informationPrivacy and Security Training Policy (PS.Pol.051)
Privacy and Security Training Plicy (PS.Pl.051) Purpse T define the plicies and prcedures fr prviding privacy and security training in respect f the CnnectingGTA Slutin. Definitins Electrnic Service Prvider
More informationUniversity of Texas at Dallas Policy for Accepting Credit Card and Electronic Payments
University f Texas at Dallas Plicy fr Accepting Credit Card and Electrnic Payments Cntents: Purpse Applicability Plicy Statement Respnsibilities f a Merchant Department Prcess t Becme a Merchant Department
More informationPlus500CY Ltd. Statement on Privacy and Cookie Policy
Plus500CY Ltd. Statement n Privacy and Ckie Plicy Statement n Privacy and Ckie Plicy This website is perated by Plus500CY Ltd. ("we, us r ur"). It is ur plicy t respect the cnfidentiality f infrmatin and
More informationTrustED Briefing Series:
TrustED Briefing Series: Since 2001, TrustCC has prvided IT audits and security assessments t hundreds f financial institutins thrugh ut the United States. Our TrustED Briefing Series are white papers
More informationWire Transfer Request
Wire Transfer Request Requirements and Instructins OFFICE OF DISBURSEMENTS Categry: Dcument Name: Payment Prcessing Wire Transfer Request - Requirements and Instructins Respnsible Department: Office f
More information10 th May 2010. Dear Peter, Re: Audit Quality in Australia: A Strategic Review
10 th May 2010 Mr. Peter Levy Audit Quality Strategic Review Crpratins and Financial Services Divisin The Treasury Langtn Crescent PARKES ACT 2600 Dear Peter, Re: Audit Quality in Australia: A Strategic
More informationRemote Working (Policy & Procedure)
Remte Wrking (Plicy & Prcedure) Publicatin Scheme Y/N Department f Origin Plicy Hlder Authrs Can be published n Frce Website Prfessinal Standards Department (PSD) Ch Supt Head f PSD IT Security Officer
More informationPost-Baccalaureate Certificate Programs
Pst-Baccalaureate Certificate Prgrams Certificate prgrams benefit students and/r interest by prviding greater flexibility and brader training in areas related t the students' majr fields and making thse
More informationTitle IV Refund Policy (R2T4)
Title IV Refund Plicy (R2T4) Charter Oak State Cllege s revised Refund Plicy cmplies with the amended 34 CFR Sectin 668.22 f the Higher Educatin Amendment f 1998. This plicy reflects new regulatins that
More informationMalpractice and Maladministration Policy
TR340 Malpractice and Maladministratin Plicy This plicy aims t: Define malpractice and maladministratin in the cntext f CIM/CAM studying members, Accredited study centres (ASCs), examinatin centres, invigilatrs
More informationGuidance for Law Enforcement Regarding The Medical Use of Marijuana Online System ( MMJ Online System ) Updated April 15, 2015
CHARLES D. BAKER Gvernr KARYN E. POLITO Lieutenant Gvernr The Cmmnwealth f Massachusetts Executive Office f Health and Human Services Department f Public Health Bureau f Health Care Safety and Quality
More informationLoss Share Data Specifications Change Management Plan
Lss Share Data Specificatins Change Management Plan Last Updated: 2/27/2013 Table f Cntents I. Purpse... 3 II. Change Management Apprach... 3 III. Categries f Revisins... 4 IV. Help and Supprt... 6 Lss
More informationiphone Mobile Application Guide Version 2.2.2
iphne Mbile Applicatin Guide Versin 2.2.2 March 26, 2014 Fr the latest update, please visit ur website: www.frte.net/mbile Frte Payment Systems, Inc. 500 West Bethany, Suite 200 Allen, Texas 75013 (800)
More informationCHANGE MANAGEMENT STANDARD
The electrnic versin is current, r when printed and stamped with the green cntrlled dcument stamp. All ther cpies are uncntrlled. DOCUMENT INFORMATION Descriptin Dcument Owner This standard utlines the
More informationAccessible Service Policy
Accessible Service Plicy Date Created Revisin Oct. 16, 2012 1 Gal This plicy is intended t meet the requirements f the Accessibility Standards fr Custmer Service, Ontari Regulatin 429/07 under the Accessibility
More informationShelby County Schools Online Employee Accident Reporting User Manual
Shelby Cunty Schls Online Emplyee Accident Reprting User Manual Department f Risk Management Nvember, 2013 Overview In accrdance with SCS bard plicy 4014, Accidents n the Jb (als referred t as On the Jb
More informationHIPAA Notice of Privacy Practices. Central Ohio Surgical Associates, Inc.
HIPAA Ntice f Privacy Practices Central Ohi Surgical Assciates, Inc. THIS NOTICE OF PRIVACY PRACTICES (THE NOTICE ) DESCRIBES HOW HEALTH INFORMATION ABOUT YOU MAY BE USED AND DISCLOSED AND HOW YOU CAN
More informationGENERAL MOTORS COMPANY AUDIT COMMITTEE CHARTER. Most Recently Amended: December 8, 2015
GENERAL MOTORS COMPANY AUDIT COMMITTEE CHARTER Mst Recently Amended: December 8, 2015 Purpse The purpse f the Audit Cmmittee is t assist the Bard f Directrs f General Mtrs Cmpany in its versight f the
More informationVENDOR REGISTRATION AND DISCLOSURE STATEMENT AND SMALL, WOMEN-, AND MINORITY-OWNED BUSINESS CERTIFICATION APPLICATION
WV-1A New Update REV. 09/18/15 STATE OF WEST VIRGINIA - PURCHASING DIVISION VENDOR REGISTRATION AND DISCLOSURE STATEMENT AND SMALL, WOMEN-, AND MINORITY-OWNED BUSINESS CERTIFICATION APPLICATION Befre a
More informationInternet Banking Agreement and Disclosure Statement
Internet Banking Agreement and Disclsure Statement This agreement cntains the terms and cnditins that gvern accessing r using Internet Banking (NetTeller), Bill Payment Services, Mbile Banking and On Demand
More informationACQUIRED RARE DISEASE DRUG THERAPY EXCEPTION PROCESS
ADMINISTRATIVE POLICY ACQUIRED RARE DISEASE DRUG THERAPY EXCEPTION PROCESS Plicy Number: ADMINISTRATIVE 19.8 T Effective Date: Octber 1, 014 Table f Cntents CONDITIONS OF COVERAGE... BENEFIT CONSIDERATIONS...
More informationProcess for Responding to Privacy Breaches
Prcess fr Respnding t Privacy Breaches 1. Purpse 1.1 This dcument sets ut the steps that ministries must fllw when respnding t a privacy breach. It must be read in cnjunctin with the Infrmatin Incident
More informationInvestigative Management Program and Case Tracking System (IMPACT)
Privacy Impact Assessment fr the Investigative Management Prgram and Case Tracking System (IMPACT) February 4, 2008 Cntact Pint Office f Infrmatin Systems Drug Enfrcement Administratin 202-307-1000 Reviewing
More informationADMINISTRATION AND FINANCE POLICIES AND PROCEDURES TABLE OF CONTENTS
CONTROL Revisin Date: 1/21/03 TABLE OF CONTENTS 10.01 OVERVIEW OF ACCOUNTING FOR INVESTMENT IN PLANT... 2 10.01.1 CURRENT POLICY... 2 10.02 INVENTORY MAINTENANCE AND CONTROL... 3 10.02.1 PROCEDURES FOR
More informationDate: October 24, 2013 Code: TECHNICAL LETTER HR/EHDB 2013-05. Common Human Resources System (CHRS) Security Plan and Requirements - Policy Guidelines
Office f the Chancellr 401 Glden Shre, 4 th Flr Lng Beach, CA 90802-4210 562-951-4411 email: hradmin@calstate.edu Date: Octber 24, 2013 Cde: TECHNICAL LETTER HR/EHDB 2013-05 T: Human Resurces Officers
More informationGUIDELINE INFORMATION MANAGEMENT (IM) PROGRAM PLAN
Gvernment f Newfundland and Labradr Office f the Chief Infrmatin Officer Infrmatin Management Branch GUIDELINE INFORMATION MANAGEMENT (IM) PROGRAM PLAN Guideline (Definitin): OCIO Guidelines derive frm
More informationPrivacy Breach and Complaint Protocol
Privacy Breach and Cmplaint Prtcl Effective: December 31, 2012 Apprved by: Le McKenna, CFO 1.0 General Privacy breaches and privacy cmplaints will be handled in accrdance with this prtcl. This prtcl is
More informationCMS Eligibility Requirements Checklist for MSSP ACO Participation
ATTACHMENT 1 CMS Eligibility Requirements Checklist fr MSSP ACO Participatin 1. General Eligibility Requirements ACO participants wrk tgether t manage and crdinate care fr Medicare fee-fr-service beneficiaries.
More informationexpertise hp services valupack consulting description security review service for Linux
expertise hp services valupack cnsulting descriptin security review service fr Linux Cpyright services prvided, infrmatin is prtected under cpyright by Hewlett-Packard Cmpany Unpublished Wrk -- ALL RIGHTS
More informationCommunicating Deficiencies in Internal Control to Those Charged with Governance and Management
Internatinal Auditing and Assurance Standards Bard ISA 265 April 2009 Internatinal Standard n Auditing Cmmunicating Deficiencies in Internal Cntrl t Thse Charged with Gvernance and Management Internatinal
More informationApplication for Inclusion of a Developed Practice Area in Professional Psychology for Purposes of Doctoral and Internship Program Accreditation
Applicatin fr Inclusin f a Develped Practice Area in Prfessinal Psychlgy fr Purpses f Dctral and Internship Prgram Accreditatin Cmmittee n Accreditatin c/ Office f Prgram Cnsultatin and Accreditatin Educatin
More informationLOUISIANA TECH UNIVERSITY Division of Student Financial Aid Post Office Box 7925 Ruston, LA 71272
LOUISIANA TECH UNIVERSITY Divisin f Student Financial Aid Pst Office Bx 7925 Rustn, LA 71272 Dear Financial Aid Applicant, Accrding t yur 2011-2012 Student Aid Reprt (SAR), yu did nt include any parental
More informationFinance, Performance and Risk Committee 2014/2015
Finance, Perfrmance and Risk Cmmittee 2014/2015 Date f Meeting: 17 December 2014 Agenda Item: Click here t enter text. Subject: Infrmatin Gvernance Plicy Reprting Officer: Paul Byrne Lead IG Manager Aim
More informationSystems Support - Extended
1 General Overview This is a Service Level Agreement ( SLA ) between and the Enterprise Windws Services t dcument: The technlgy services the Enterprise Windws Services prvides t the custmer. The targets
More informationPayment & Dispute Management Policy
BACKGROUND, GOALS & OBJECTIVES Business Issue/Opprtunity In 2013, Lenv initiated a series f prjects t imprve the verall custmer experience fr ur custmers and business partners. The timeliness and accuracy
More informationProcess of Setting up a New Merchant Account
Prcess f Setting up a New Merchant Accunt Table f Cntents PCI DSS... 3 Wh t cntact?... 3 Bakcgrund n PCI... 3 Why cmply?... 3 Hw t cmply?... 3 PCI DSS Scpe... 4 Des PCI DSS Apply t Me?... 4 What if I am
More information.100 POLICY STATEMENT
Treasury Management Operatins Sectin: Treasury Management Number: 105.100 Title: Treasury Management Operatins POLICY Index.100 POLICY STATEMENT.110 POLICY RATIONALE.120 AUTHORITY.130 APPROVAL AND EFFECTIVE
More informationProject Open Hand Atlanta. Health Insurance Portability and Accountability Act (HIPAA) NOTICE OF PRIVACY PRACTICES
Prject Open Hand Atlanta Effective Date: April 14, 2003 Health Insurance Prtability and Accuntability Act (HIPAA) The Health Insurance Prtability and Accuntability Act f 1996 (HIPAA) directs health care
More informationMSB FINANCIAL CORP. MILLINGTON BANK AUDIT COMMITTEE CHARTER
MSB FINANCIAL CORP. MILLINGTON BANK AUDIT COMMITTEE CHARTER This Audit Cmmittee Charter has been amended as f July 17, 2015. The Audit Cmmittee shall review and reassess this Charter annually and recmmend
More informationEmployee Benefits Liability Policy
Plicy 10/3084 part 3 Emplyee Benefits Liability Plicy Summary Publicatin Date March 2015 Review Date March 2016 Related Legislatin/Applicable Sectin f Legislatin Related Plicies, Prcedures, Guidelines,
More informationCloud-based File Sharing: Privacy and Security Tutorial Institutional Compliance Office July 2013
Clud-based File Sharing: Privacy and Security Tutrial Institutinal Cmpliance Office July 2013 Patient Data in the Clud Prtecting patient privacy is ne f MD Andersn s greatest respnsibilities Technlgies
More informationInformation Services Hosting Arrangements
Infrmatin Services Hsting Arrangements Purpse The purpse f this service is t prvide secure, supprted, and reasnably accessible cmputing envirnments fr departments at DePaul that are in need f server-based
More informationFINANCIAL SERVICES FLASH REPORT
FINANCIAL SERVICES FLASH REPORT Draft Regulatry Cmpliance Management Guideline Released by the Office f the Superintendent f Financial Institutins May 5, 2014 On April 30, 2014, the Office f the Superintendent
More informationAudit Committee Charter
Audit Cmmittee Charter Membership The Audit Cmmittee (the "Cmmittee") f the Bard f Directrs (the "Bard") f Philip Mrris Internatinal Inc. (the "Cmpany") shall cnsist f at least three directrs all f whm
More informationCredit Work Group Recommendation
Credit Wrk Grup Recmmendatin T: Credit Wrk Grup Frm: Mike Bixby (305) 829-5549 mbixby@inf1team.cm Paul Wills (770) 740-7353 Paul.Wills@equifax.cm Date: Octber 7, 2004 Re: FACT Act Implicatins and Recmmendatins
More informationNew in this release. Sphere 9.4.3.2 (October 2013)
New in this release Sphere 9.4.3.2 (Octber 2013) The fllwing client-facing changes were implemented: An issue that prevented certain Friends Asking Friends spnsrship levels frm appearing as ptins n the
More information2. Are there any restrictions on when the work can be performed (e.g. only at night, only during business hours, only on weekends)? No.
HIPAA Technical Risk Security Assessment 1. Will yu be issuing additinal directins fr the frmatting f the final prpsal due Nvember 21 st? There is nt specific frmatting requirements, just submit the prpsal
More informationMontana Acquisition & Contracting System (emacs) emacs Handbook. Vendor Registration and Data Management
Mntana Acquisitin & Cntracting System (emacs) emacs Handbk Vendr Registratin and Data Management Welcme The purpse f this emacs Handbk fr Vendr Registratin and Data Management is t prvide vendrs with the
More informationService Level Agreement (SLA) Hosted Products. Netop Business Solutions A/S
Service Level Agreement (SLA) Hsted Prducts Netp Business Slutins A/S Cntents 1 Service Level Agreement... 3 2 Supprt Services... 3 3 Incident Management... 3 3.1 Requesting service r submitting incidents...
More informationITIL Foundation Certification Course v3 Information Technology Service Management (MIE-ITIL-FDN, 3 days)
ITIL Fundatin Certificatin Curse v3 Infrmatin Technlgy Service Management Curse Overview The purpse f the ITIL Fundatin certificate in IT Service Management is t certify that the candidate has gained knwledge
More informationUnified Infrastructure/Organization Computer System/Software Use Policy
Unified Infrastructure/Organizatin Cmputer System/Sftware Use Plicy 1. Statement f Respnsibility All emplyees are charged with the security and integrity f the cmputer system. Emplyees are asked t help
More informationHillsborough Board of Education Acceptable Use Policy for Using the Hillsborough Township Public Schools Network
2361/Page 1 f 6 Hillsbrugh Bard f Educatin Acceptable Use Plicy fr Using the Hillsbrugh Twnship Public Schls Netwrk It is the gal f the HTPS (Hillsbrugh Twnship Public Schls) Netwrk t prmte educatinal
More informationEarly Childhood Development Services. Early Childhood Education Assistance Program. Terms and Conditions
Early Childhd Develpment Services Early Childhd Educatin Assistance Prgram Table f Cntents Overview... 2 Prgram Descriptin... 2 Eligibility Criteria... 3 Apprved Early Childhd Training Prgrams... 3 Prgram
More informationNo new accounting policies were adopted and the application of existing policies was not changed during 2012.
www.cliftnlarsnallen.cm Bard f Directrs First Nnprfit Fundatin Chicag, Illinis We have audited the financial statements f First Nnprfit Fundatin (the Fundatin ) fr the year ended December 31, 2012, and
More informationFINANCIAL OPTIONS. 2. For non-insured patients, payment is due on the day of service.
FINANCIAL OPTIONS 1. Fr thse patients wh carry dental insurance, all c-payments are due n date f service. We will file yur claim as a service t yu, and will d ur very best t maximize yur benefits. We accept
More informationITIL Release Control & Validation (RCV) Certification Program - 5 Days
ITIL Release Cntrl & Validatin (RCV) Certificatin Prgram - 5 Days Prgram Overview ITIL is a set f best practices guidance that has becme a wrldwide-adpted framewrk fr Infrmatin Technlgy Services Management
More information