Checklist

Download Free Outsourcing IT Project Vendor Financial Information - Request for Proposal Checklist

1 Base Fees.
1.1 Specify vendor’s overall base fees, presented as fixed annual payments over the term.
1.2 At a minimum, the vendor’s base charges should include information technology services that Customer provides for itself through its own personnel as of the date of the outsourcing agreement, as such services may evolve during the term.
1.3 [The base fees should include a compounded annual growth rate of [NUMBER] percent.]
1.4 [The vendor must reconcile its final pricing structure to Customer’s [***] budget, which is attached as Appendix [NUMBER].]
1.5 All cost areas, including vendor responsible, pass-through, and Customer-retained cost areas, should be detailed by subarea (e.g., data center, AS/400s) over each of the years of the term.
1.6 Provide your base fees, broken down into separate pricing for each of the following subareas for each of the years of the term:

Download Free Configuration Management Roles and Responsibilities

Chief information officer (CIO):
The CIO is responsible for setting forth policies concerning Configuration Management (CM) and implementing Configuration Management (CM) at the highest level for the organization.

System owner:
The system owner serves as the authority for all matters of Configuration Management (CM) for the system. The system owner is responsible for developing functional requirements and verifying that the requirements are implemented appropriately.

Information systems security officer (ISSO):

Download Free ISO 27001 IT Security Service Level Agreement (SLA) Objectives

1. Defining Roles and Accountability
It is important that both parties to an SLA understand the respective roles and responsibilities defined in the agreement. A number of industry factors have made establishing roles, responsibilities, and performance (and financial) accountability increasingly difficult on both the network and services side of the SLA equation.

2. Managing Expectations
In general, executing an SLA contractually sets the customer’s expectations regarding a product’s delivery. Once defined, agreed to, and executed, the terms and conditions that make up the bulk of the SLA contract become the customer’s entitlements with respect to the product. This guarantee enables the customer to plan and operate his or her business with a reasonable level of confidence in the availability, performance, or timeframe of a contracted product or service.

3. Controlling Implementation and Execution

Download Free Security Roles and Responsibilities Assessment Checklist

- Are security roles and responsibilities clearly defined?
- Has someone been assigned to audit the firewall on a regular basis?
- Has someone been assigned to upgrade the firewall when necessary?
- Do all managers understand both their own security roles and responsibilities and those of the people who report to them?

Download Free Firewall Security Checklists and Recommendation for ISO 27001

Firewall Management:
- Organizations and agencies should use firewalls to secure their Internet connections and their connections to other networks. At remote locations, users should use personal fire-walls and firewall appliances to secure their connections to the Internet and Internet Service Providers.

- Organizations should view firewalls as their first line of defense from external threats; inter-nal security must still be a top priority. Internal systems must be patched and configured in a timely manner.

- Organizations must monitor incident response team reports and security websites for infor-mation about current attacks and vulnerabilities. The firewall policy should be updated as necessary. A formal process should be used for managing the addition and deletion of fire-wall rules.

- Organizations should recognize that all system administration, especially firewall admini-stration, requires significant time and training. Organizations should ensure that their ad-ministrators receive regular training so as to stay current with threats and vulnerabilities.

Firewall Configuration:
- Filter packets and protocols
- Perform Stateful inspection of connections
- Perform proxy operations on selected applications