Browse
Search
2024-054-E-AMS-TMA Systems -MobileTMA Go Upgrade
OrangeCountyNC
>
Board of County Commissioners
>
Contracts and Agreements
>
General Contracts and Agreements
>
2020's
>
2024
>
2024-054-E-AMS-TMA Systems -MobileTMA Go Upgrade
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
2/13/2024 9:18:09 AM
Creation date
2/13/2024 9:16:33 AM
Metadata
Fields
Template:
Contract
Date
1/8/2024
Contract Starting Date
1/8/2024
Contract Ending Date
1/29/2024
Contract Document Type
Contract
Amount
$4,194.00
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
165
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
<br />23. What are the cloud provider’s incident management and reporting policies? <br />TMA Response: TMA has an extensive incident management policy in place. Please let <br />the following service as an overview for the contents of this policy. <br /> <br />TMA Systems possesses information corporately, for their clients, and for their <br />business associates that is sensitive and valuable. Because the Company takes <br />information security very seriously, prompt action must be taken in the event of any <br />actual or suspected breaches of information security or confidentiality. Prompt action <br />will avoid, or minimize the risk of harm to the Company, clients, partners, or their <br />respective employees. In addition, prompt action will minimize: damage to <br />operations, financial losses, legal exposure and damage to the organizations <br />reputation. The Company requires all employees to diligently protect information as <br />appropriate for its sensitivity level and report suspected information breaches <br />promptly so appropriate action can be taken and harm can be minimized. Failure to <br />comply with this policy may subject you to disciplinary measures up to and including <br />termination and other legal remedies. <br /> <br />The following sections comprise this policy: <br /> Purpose of Policy <br /> What is an Information Security Incident? <br /> What and Who the Policy Applies to <br /> Where the Policy Applies <br /> Lines of Responsibility <br /> Responsibility for Creating a Culture of Information Security <br /> <br />24. What is the process by which the cloud provider updates policies and informs customers? <br />TMA Response: Unless changes are made to the “Terms of Use” or “Privacy Policy”, <br />which are accessible from the login page, TMA does not automatically provide updates to <br />customers related to this information. This information is available upon request. <br /> <br />25. What is the basic architecture of the cloud provider’s network security? (overall design, <br />zones, filters, firewalls, VLANs, protocols, standards) <br />TMA Response: Please see the WebTMA Service Provider Security and Operations <br />Controls document within the Attachment section of our response. <br /> <br />26. What security measures does the cloud provider use in data storage, transit and use? <br />TMA Response: Please see the WebTMA Service Provider Security and Operations <br />Controls document within the Attachment section of our response. <br /> <br />27. What encryption technologies does the cloud provider use in data management? <br />TMA Response: For the protection of our clients all client data is stored in separate <br />databases. WebTMA salts and hashes passwords rather than storing clear text. WebTMA <br />uses the MD5 Hash algorithm. Using a hash algorithm is more secure than encryption <br />since it is impossible to reverse the encryption and expose the password. MD5 is the most <br />commonly used hash algorithm for storing passwords. The entire WebTMA solution is <br />DocuSign Envelope ID: D1041CA6-DBD4-42BE-8B32-7C592BF2BA15DocuSign Envelope ID: 3E613CA5-0A37-4CD3-890F-47CC5E2F38B1
The URL can be used to link to this page
Your browser does not support the video tag.