Intermec Security Letter of Agreement



Similar documents
C-TPAT Importer Security Criteria

Importers must have written and verifiable processes for the selection of business partners including manufacturers, product suppliers and vendors.

Security Criteria for C-TPAT Foreign Manufacturers in English

A Message for Warehouse Operators And Security Guidelines for Warehouse Operators

Global Supply Chain Security Recommendations

welcome to Telect s Minimum Security Criteria for Customs-Trade Partnership Against Terrorism (C-TPAT) Foreign Manufacturers Training Presentation

Return the attached PPG Supply Chain Security Acknowledgement by , fax, or mail within two weeks from receipt.

Customs & Trade Partnership Against Terrorism (C TPAT)

WAREHOUSE SECURITY BEST PRACTICE GUIDELINES CUSTOMS-TRADE PARTNERSHIP AGAINST TERRORISM

Partners in Protection / C-TPAT Supply Chain Security Questionnaire

Seventh Avenue Inc. 1

Customs-Trade Partnership Against Terrorism (C-TPAT) Security Guidelines for Suppliers/Shippers

Customs-Trade Partnership against Terrorism Supply Chain Security Profile

Customs-Trade Partnership Against Terrorism (C-TPAT) Minimum Security Criteria Third Party Logistics Providers (3PL)

Customs-Trade Partnership against Terrorism Supply Chain Security Profile

ABBVIE C-TPAT SUPPLY CHAIN SECURITY QUESTIONNAIRE

C-TPAT Security Criteria Sea Carriers

Security Profile. Business Partner Requirements, Security Procedures (Updated)

Customs -Trade Partnership Against Terrorism (C-TPAT) Vendor Participation Overview

C-TPAT Self-Assessment - Manufacturing & Warehousing

Rail Carrier Security Criteria

C-TPAT Highway Carrier Security Criteria

CVS Pharmacy C-TPAT Requirements For Import Product Suppliers

CVS Pharmacy C-TPAT Requirements For Product Suppliers

What is C-TPAT? Customs Trade Partnership Against Terrorism

APEC Private Sector. Supply Chain Security Guidelines

MINIMUM SECURITY GUIDELINES FOR SOURCE MANUFACTURER/WAREHOUSEMEN C-TPAT INFORMATION

C-TPAT Expectations for Agents, Vendors & Manufactures

Best Practices For. Supply Chain Security

C-TPAT Customs Trade Partnership Against Terrorism

Protecting Your Company s Identity

Key Small Parcel Requirements

Security Policies and Procedures

Supply Chain Security Audit Tool - Warehousing/Distribution

AEO Template Introduction

CONTENTS. Introduction...Page 5 Topic 1: Child Labor...Page 11 Topic 2: Forced Labor/Prison Labor...Page 15 Topic 3: Discrimination...

Contents. Global Security Verification (GSV) Standard. Introduction The Global Security Verification Criteria Implementation Guidance...

A Message for Carriers, Carrier-Forwarders and Others, With Security Procedures Guidelines Attached.

US CUSTOMS IMPORT DOCUMENT REQUIREMENTS

B/E Aerospace, Inc. Routing Guidelines (Shipping Within and To/From U.S.) Update January 2015

1. Perimeter fencing or walls should enclose the vicinity around cargo handling and loading areas, as well as storage facilities.

C-TPAT Executive Summary

September 25, Dear Mr. Lewis:

Guidance Notes FSR 2014

World Customs Organization

Rx-360 Supply Chain Security Template -- Requirements for Third Party Logistics Providers 6 June 2012

Customs Trade Partnership Against Terrorism (C-TPAT) International Supply Chain Security Risk Assessment Frequently Asked Questions

Seals Security & Best Practices

PHYSICAL SECURITY STANDARDS

Physical Security Assessment Form

"DOT IN-DEPTH HAZMAT SECURITY TRAINING"

Supply Chain Security Best Practices Catalog. Customs-Trade Partnership Against Terrorism (C-TPAT)

SECURITY IN TRUCKING

Security Guidelines for. Agricultural distributors

Caneda Transport Border Guide lines and Regulations Manual. Canada Border Service Agency (PIP) C-TPAT

DOT HAZMAT SECURITY AWARENESS TRAINING

CARGO SEALING GUIDE - PROCEDURES FOR C-TPAT/FAST PARTICIPANTS

APPENDIX 1: ORACLE SUPPLY CHAIN AND HIGH VALUE ASSET PHYSICAL SECURITY STANDARDS

2. Employees must wear their ID tag at all times while on the premises.

A Self-Audit of Your Current Campus Security Systems

GUIDE TO DEVELOPING A FOOD DEFENSE PLAN FOR Food Processing Plants

CITY UNIVERSITY OF HONG KONG Physical Access Security Standard

Food Defense Self-Assessment Checklist for. Slaughter and Processing Plants

FSIS Security Guidelines for Food Processors

C-TPAT: What Every Security Executive Should Know

Developing a Security Training and Awareness Program

Home Security Assessment Checklist DATE

C-TPAT CUSTOMS TRADE PARTNERSHIP AGAINST TERRORISM

JEFFERSON LAB Unclassified Foreign Visits & Assignments Program GENERIC SECURITY PLAN For Assignments

The Authorized Economic Operator and the Small and Medium Enterprise FAQ

Does a fence or other type physical barrier define the perimeter of the facility?

Service Children s Education

LOSS PREVENTION IAT GROUP

MODESTO CITY SCHOOLS Administrative Regulation

Rx-360 Supply Chain Security White Paper: Audits and Assessments of Third Party Warehousing and Distribution Facilities

DESIGNATED CONTRACT MARKET OPERATIONAL CAPABILITY TECHNOLOGY QUESTIONNAIRE

SECURITY VULNERABILITY CHECKLIST FOR ACADEMIC AND SMALL CHEMICAL LABORATORY FACILITIES

TABLE OF CONTENTS. A. Introduction to Best Practices Page 3. B. Risk Assessment Page 5. C. Business Partner Requirements Page 6

Threats, Risks and Possible solutions

Self assessment questionnaire

Upon completion of the module, you will be issued an electronic training certificate.

SUPPLY CHAIN SECURITY IN THE 21 st CENTURY

How To Protect A Water System

E3211. DOT Hazmat Security Awareness. Leader s Guide

FSR2014 FACILITY SECURITY REQUIREMENTS. Transported Asset Protection Association. All Rights Reserved

Conveyance Inspection Procedures and Sealing Process. Presented by SSCSS Mark Isaacson SCSS Tom Greulich SCSS Mark Mahoney

U.S. Customs and Border Protection Security Seal/Hologram Program Procedures (Updated Sep 2010)

%&&&&&&&&&&&&&&&&&&&&&&&&&

SWAP EXECUTION FACILITY OPERATIONAL CAPABILITY TECHNOLOGY QUESTIONNAIRE

Identity Theft Prevention Program Compliance Model

Data Management Policies. Sage ERP Online

Statement of objective MALLS & MULTIPLEXES

VILLANOVA UNIVERSITY ENVIRONMENTAL HEALTH AND SAFETY DEPARTMENT OF TRANSPORTATION HAZARDOUS MATERIALS SECURITY PLAN

PII Compliance Guidelines

State of Vermont. Physical Security for Computer Protection Policy

File 6: Appendix A, 36 CFR 1234 (formally numbered as 36 CFR 1228 subpart K) Federal Facility Security Standards (version 2.0 issued May 15, 2014)

543.7 What are the minimum internal control standards for bingo?

Increasing Competitiveness / Lowering Costs with Supply Chain Management and Security Standards

Transcription:

Intermec Security Letter of Agreement Dear Supplier, Please be advised that Intermec Technologies has joined US Customs and Border Protection (USC&BP) in the Customs-Trade Partnership Against Terrorism (C-TPAT). The C-TPAT is an initiative sponsored by the United States Customs and Border Protection Agency with the objective of securing our supply streams. Please familiarize yourself with the C-TPAT information and requirements listed in the attachment to this letter. More detailed information about C-TPAT can be found on the following US Customs & Border protection Website: http://www.customs.ustreas.gov/xp/cgov/import/commercial_enforcement/ctpat/ A requirement for this partnership is to continue to develop, implement, and manage plans that ensure the integrity of security practices throughout the supply stream. Intermec Technologies must ensure that its vendors and service providers are either part of the C-TPAT Program or are willing to adhere to the security procedures of the program. Please fill out the Security Questionnaire and the Security Letter of Agreement and forward these documents to your Procurement Agent. We are a member of C-TPAT (If so, please send a copy of the Certificate along with this letter). We are currently not a member, but will apply for membership and in the meantime adhere to all of the C- TPAT policies and procedures. We are not a member, do not plan on applying for membership, but we will adhere to all of the C-TPAT policies and procedures. We are not a member, do not plan on applying for membership, and will not adhere to the C-TPAT policies and procedures. We are a member of a C-TPAT equivalent World Customs Organization security program administered by a foreign (non-us) customs authority. Program (name). (Please send a copy of the membership document). Please describe any security related weaknesses your company currently has and how these weaknesses will be addressed. Name/ title of the company representative (print) Company name (print) Signature Date 670049C (04/05) 1

Security Requirements Business Partner Requirement Importers must have written and verifiable processes for the selection of business partners including manufacturers, product suppliers and vendors. Security procedures For those business partners eligible for C-TPAT certification (carriers, ports, terminals, brokers, consolidators, etc.) the importer must have documentation (e.g., C-TPAT certificate, SVI number, etc.) indicating whether these business partners are or are not C-TPAT certified. For those business partners not eligible for C-TPAT certification, importers must require their business partners to demonstrate that they are meeting C-TPAT security criteria via written/electronic confirmation (e.g., contractual obligations; via a letter from a senior business partner officer attesting to compliance; a written statement from the business partner demonstrating their compliance with C-TPAT security criteria or an equivalent WCO accredited security program administered by a foreign customs authority; or, by providing a completed importer security questionnaire).based upon a documented risk assessment process, non-c-tpat eligible business partners must be subject to verification of compliance with C- TPAT security criteria by the importer. Point of Origin Importers must ensure business partners develop security processes and procedures consistent with the C-TPAT security criteria to enhance the integrity of the shipment at point of origin. Periodic reviews of business partners processes and facilities should be conducted based on risk, and should maintain the security standards required by the importer. Participation / Certification in Foreign Customs Administrations Supply Chain Security Programs Current or prospective business partners who have obtained a certification in a supply chain security program being administered by foreign Customs Administration should be required to indicate their status of participation to the importer. Other Internal criteria for selection Internal requirements, such as financial soundness, capability of meeting contractual security requirements, and the ability to identify and correct security deficiencies as needed, should be addressed by the importer. Internal requirements should be assessed against a risk-based process as determined by an internal management team. Container Security Container integrity must be maintained to protect against the introduction of unauthorized material and/or persons. At point of stuffing, procedures must be in place to properly seal and maintain the integrity of the shipping containers. A high security seal must be affixed to all loaded containers bound for the U.S. All seals must meet or exceed the current PAS ISO 17712 standards for high security seals. Container Inspection Procedures must be in place to verify the physical integrity of the container structure prior to stuffing, to include the reliability of the locking mechanisms of the doors. A seven-point inspection process is recommended for all containers: Front wall Left side Right side Floor Ceiling/Roof Inside/outside doors Outside/Undercarriage Container Seals Written procedures must stipulate how seals are to be controlled and affixed to loaded containers 2

- to include procedures for recognizing and reporting compromised seals and/or containers to US Customs and Border Protection or the appropriate foreign authority. Only designated employees should distribute container seals for integrity purposes. Container Storage Containers must be stored in a secure area to prevent unauthorized access and/or manipulation. Procedures must be in place for reporting and neutralizing unauthorized entry into containers or container storage areas. Physical Access Controls Access controls prevent unauthorized entry to facilities, maintain control of employees and visitors, and protect company assets. Access controls must include the positive identification of all employees, visitors, and vendors at all points of entry. Employees An employee identification system must be in place for positive identification and access control purposes. Employees should only be given access to those secure areas needed for the performance of their duties. Company management or security personnel must adequately control the issuance and removal of employee, visitor and vendor identification badges. Procedures for the issuance, removal and changing of access devices (e.g. keys, key cards, etc.) must be documented. Visitors Visitors must present photo identification for documentation purposes upon arrival. All visitors should be escorted and visibly display temporary identification. Deliveries (including mail) Proper vendor ID and/or photo identification must be presented for documentation purposes upon arrival by all vendors. Arriving packages and mail should be periodically screened before being disseminated. Challenging and Removing Unauthorized Persons Procedures must be in place to identify, challenge and address unauthorized/unidentified persons. Personnel Security Processes must be in place to screen prospective employees and to periodically check current employees. Pre-Employment Verification Application information, such as employment history and references must be verified prior to employment. Background checks / investigations Consistent with foreign, federal, state, and local regulations, background checks and investigations should be conducted for prospective employees. Once employed, periodic checks and reinvestigations should be performed based on cause, and/or the sensitivity of the employee s position. Personnel Termination Procedures Companies must have procedures in place to remove identification, facility, and system access for terminated employees. Procedural Security Security measures must be in place to ensure the integrity and security of processes relevant to the transportation, handling, and storage of cargo in the supply chain. 3

Documentation Processing Procedures must be in place to ensure that all information used in the clearing of merchandise/cargo, is legible, complete, accurate, and protected against the exchange, loss or introduction of erroneous information. Documentation control must include safeguarding computer access and information. Manifesting Procedures To help ensure the integrity of cargo received from abroad, procedures must be in place to ensure that information received from business partners is reported accurately and timely. Shipping & Receiving Arriving cargo should be reconciled against information on the cargo manifest. The cargo should be accurately described, and the weights, labels, marks and piece count indicated and verified. Departing cargo should be verified against purchase or delivery orders. Drivers delivering or receiving cargo must be positively identified before cargo is received or released. Cargo Discrepancies All shortages, overages, and other significant discrepancies or anomalies must be resolved and/or investigated appropriately. Customs and/or other appropriate law enforcement agencies must be notified if illegal or suspicious activities are detected - as appropriate. Security Training and Threat Awareness A threat awareness program should be established and maintained by security personnel to recognize and foster awareness of the threat posed by terrorists at each point in the supply chain. Employees must be made aware of the procedures the company has in place to address a situation and how to report it. Additional training should be provided to employees in the shipping and receiving areas, as well as those receiving and opening mail. Additionally, specific training should be offered to assist employees in maintaining cargo integrity, recognizing internal conspiracies, and protecting access controls. These programs should offer incentives for active employee participation. Physical Security Cargo handling and storage facilities in domestic and foreign locations must have physical barriers and deterrents that guard against unauthorized access. Importers should incorporate the following C-TPAT physical security criteria throughout their supply chains as applicable. Fencing Perimeter fencing should enclose the areas around cargo handling and storage facilities. Interior fencing within a cargo handling structure should be used to segregate domestic, international, high value, and hazardous cargo. All fencing must be regularly inspected for integrity and damage. Gates and Gate Houses Gates through which vehicles and/or personnel enter or exit must be manned and/or monitored. The number of gates should be kept to the minimum necessary for proper access and safety. Parking Private passenger vehicles should be prohibited from parking in or adjacent to cargo handling and storage areas. Building Structure Buildings must be constructed of materials that resist unlawful entry. The integrity of structures must be maintained by periodic inspection and repair. Locking Devices and Key Controls All external and internal windows, gates and fences must be secured with locking devices. Management or security personnel must control the issuance of all locks and keys. 4

Lighting Adequate lighting must be provided inside and outside the facility including the following areas: entrances and exits, cargo handling and storage areas, fence lines and parking areas. Alarms Systems & Video Surveillance Cameras Alarm systems and video surveillance cameras should be utilized to monitor premises and prevent unauthorized access to cargo handling and storage areas. Information Technology Security Password Protection Automated systems must use individually assigned accounts that require a periodic change of password. IT security policies, procedures and standards must be in place and provided to employees in the form of training. Accountability A system must be in place to identify the abuse of IT including improper access, tampering or the altering of business data. All system violators must be subject to appropriate disciplinary actions for abuse. 5

Intermec Security Questionnaire Company Name: 1. Business Partner Requirement Yes No N/A 1.1 Do you have written and verifiable processes for the selection of business partners including manufactures, product suppliers, and vendors? 1.2 Do you require your vendors to adhere to security standards? 1.3 Do you use financial assessments to evaluate your vendors? 1.4 Do you monitor vendors' performance? 1.5 Do you perform inspections of vendors' facilities as a part of a normal policy? 1.6 Do you discuss security issues with your vendors? 2. Container 2.1 Do you ship/receive containerized shipments? 2.2 Do you have written procedures in place that stipulate how seals are to be controlled and affixed to loaded containers - to include procedures for recognizing compromised seals and/or containers? 2.3 2.4 2.5 2.6 Do you have procedures in place to verify the physical integrity of the container structure prior to stuffing, to include reliability of the locking mechanisms of the doors? Do you store containers in a secure area to prevent unauthorized access and /or manipulation? Do you have written procedures in place for reporting and neutralizing unauthorized entry into containers or container storage areas? Do you have a third party (for example, a freight forwarder) who handles your containerized shipments? 2.7 If yes, does your third party implement 2.2-2.5 requirements? 3. Physical Access Controls Yes No N/A 3.1 Do you have access controls that prevent unauthorized entry to facilities, maintain control of employees and visitors, and protect company assets? 3.2 Do access controls include the positive identification of all employees, visitors, and vendors at all points of entry? 3.3 Do you utilize a photo identification system for employees? 3.4 Do your employees have access only to those secure areas needed for the performance of their duties? 3.5 3.6 3.7 3.8 Do employees, visitors, and vendors gain entrance to facilities through a secure point of entry using electronic card keys, buzzer/release doors, security guard check points or similar methods? Do you control the issuance and removal of employee, visitor, and vendor identification badges? Do you have documented procedures for the issuance, removal, and changing of access devices (e.g. keys, key cards, etc.)? Do you have a logbook to keep visitors' names, companies they represent, purpose of visit, and entrance/exit times? 6

3.9 3.10 3.11 Are visitors required to present a photo identification document for documentation purposes upon arrival? Are visitors always escorted and required to wear identification badges while visiting your facilities? Do you have procedures in place to identify, challenge and address unauthorized/unidentified persons? 3.12 Do you periodically screen arriving packages and mail before dissemination? 4. Personnel 4.1 Do you verify applications submitted by perspective employees for work history? 4.2 Are you permitted by your government to conduct background checks on perspective employees? 4.3 If yes, do you conduct background checks of perspective employees? 4.4 If yes, please list what kind of background checks do you conduct: 4.5 Do you conduct periodic background checks of existing employees? 4.6 5. Procedural Do you have an employee termination procedure that includes recovering keys, identification badges, and other access devices? 5.1 Do you have procedures in place to ensure that all information used in the clearing of merchandise/cargo is legible, complete, accurate, and protected against the exchange, loss or introduction of erroneous information? 5.2 Do you have procedures safeguarding computer access and information? 5.3 Do you have procedures in place to ensure that information received from business partners is reported accurately and timely? 5.4 Do you have shipping/receiving procedures in place? 5.5 Do you have procedures for detecting, recording, and investigating shortages/overages? 5.6 Do you have procedures for notifying Customs and or other law enforcement agencies if illegal or suspicious activities are detected or suspected? 5.7 Do you review security measures on a periodic basis to prevent unauthorized access to facilities, equipment, document processes and cargo? 5.8 Do you have a procedure for data and record retention security? 5.9 5.10 6. Physical Do you have theft prevention program (s), procedures, or policies in place and are they documented, controlled, and periodically reviewed by management? Do you conduct random assessments of areas in your company's control within the supply chain? 6.1 Are all your buildings, yards, warehouses, on and off ramp facilities constructed of materials, which resist unlawful entry and protect against outside intrusion? 7

6.2 6.3 Do you have locking devices on all external and internal doors, windows, gates, and fences? Do you have adequate lighting inside and outside the facility including the following areas: entrances and exits, cargo handling and storage areas, fence lines and parking areas? 6.4 Does your facility have an electronic alarm system? 6.5 Does your facility have surveillance cameras? 6.6 Do you monitor enter/exit gates? 6.7 6.8 Do you have perimeter fencing to enclose the areas around cargo handling and storage facilities? Does interior fencing within the cargo handling structure segregate domestic, international, high value, and hazardous cargo? 6.9 Do you regularly inspect all fencing for integrity and damage? 6.10 Are private passenger vehicles prohibited from parking in or adjacent to cargo handling and storage areas? 6.11 Do you have an internal security department? 6.12 Do you utilize the services of an outside security company? 7. Information Technology 7.1 Do you assign passwords to your computer users? 7.2 Do you require a periodic change of passwords? 7.3 7.4 Are Information Technologies Security policies and procedures documented, controlled, communicated to applicable employees and periodically reviewed and updated by company management? Do you have a system in place to identify the abuse of IT including improper access, tampering or the altering of business data? 7.5 Do you apply disciplinary actions for IT abuse? 8. Security Training and threat Awareness Yes No N/A 8.1 Do you provide a security awareness training program to employees? 8.2 8.3 Do you provide additional training to employees in the shipping and receiving areas, as well as those receiving and opening mail? Do you offer incentives for active employee participation in reporting internal conspiracies? Company Name Signature Title Name (print) 8

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information