Florida Regulations 60FF-1.005: Customer Notice of Security Concern Regarding a Network Solution
Current as of: 2024 | Check for updates
|
Other versions
(1) All Customers shall submit a Notice of Security Concern Regarding any Network Solution that is in use, or the Customer intends to use, and not in compliance with Fl. Admin. Code R. 60FF-3.004 This requirement to submit a notice is not obviated by the submittal of a corresponding notice by a vendor.
(2) All vendors selling or implementing Network Solutions that are not provided as a part of SUNCOM services for use by SUNCOM Customers shall submit a Notice of Security Concern to the Department and the purchasing Customer prior to entering into associated agreements or contracts, or accepting associated purchase orders if prior to impending engagement or during engagement, the vendor is aware that Network Solution is not, or is not expected to be in compliance with Fl. Admin. Code R. 60FF-3.004 This requirement to submit a notice is not obviated by the submittal of a corresponding notice by a Customer.
(3) The Notice of Security Concern Regarding a Network Solution shall:
(a) Follow the submittal standards established under Fl. Admin. Code R. 60FF-1.004;
(b) Contain a description of the Network Solution;
(c) Contain descriptions of all the circumstances where the Network Solution does not comply with Fl. Admin. Code R. 60FF-3.004, and;
1. The security measures currently in place to address the Security Exposures and;
2. The security guidelines that have been made available from the Network Solution provider to Customer, and measures that are and expected to be in place to address the Security Exposures and;
3. Highlighted liability provisions that are applicable to these security conditions in complete copies of the related contracts, agreements and purchase orders.
(d) Contain a statement specifying how long the Customer intends to use the Network Solution.
(4) Customers and vendors using or implementing Network Solutions that are in violation of Fl. Admin. Code R. 60FF-3.004, shall provide the Department the following:
(a) All related information requested by the Department.
(b) Upon request from the Department, all the cooperation, access and authorities described in Fl. Admin. Code R. 60FF-3.006
Rulemaking Authority 282.702(2), (9), 282.707(2) FS. Law Implemented 282.702(2), (8), (12), 282.703, 282.704, 282.705, 282.706, 282.707 FS. History-New 6-25-08.
(3) The Notice of Security Concern Regarding a Network Solution shall:
(a) Follow the submittal standards established under Fl. Admin. Code R. 60FF-1.004;
(b) Contain a description of the Network Solution;
(c) Contain descriptions of all the circumstances where the Network Solution does not comply with Fl. Admin. Code R. 60FF-3.004, and;
1. The security measures currently in place to address the Security Exposures and;
2. The security guidelines that have been made available from the Network Solution provider to Customer, and measures that are and expected to be in place to address the Security Exposures and;
3. Highlighted liability provisions that are applicable to these security conditions in complete copies of the related contracts, agreements and purchase orders.
(d) Contain a statement specifying how long the Customer intends to use the Network Solution.
(4) Customers and vendors using or implementing Network Solutions that are in violation of Fl. Admin. Code R. 60FF-3.004, shall provide the Department the following:
(a) All related information requested by the Department.
(b) Upon request from the Department, all the cooperation, access and authorities described in Fl. Admin. Code R. 60FF-3.006
Rulemaking Authority 282.702(2), (9), 282.707(2) FS. Law Implemented 282.702(2), (8), (12), 282.703, 282.704, 282.705, 282.706, 282.707 FS. History-New 6-25-08.