My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
Agenda Packet_2025-07-15
Clerk
>
Agenda Packets / Staff Reports
>
City Council (2004 - Present)
>
2025
>
07/15/2025
>
Agenda Packet_2025-07-15
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
7/9/2025 11:22:49 AM
Creation date
7/9/2025 9:14:21 AM
Metadata
Fields
Template:
City Clerk
Doc Type
Agenda Packet
Date
7/15/2025
Destruction Year
P
Jump to thumbnail
< previous set
next set >
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
1754
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
Docusign Envelope IM: 72A91636-BEA1 46FE-AWD-146571 B87804 <br />EXHIBIT 2 <br />g. User iDs and Password Controls. <br />i. All users must be issued a unique username for accessing Pil. <br />ii. Username must be promptly disabled, deleted, or the password changed upon <br />the transfer or termination of an employee within twenty-four (24) hours. Note: <br />Twenty-four (24) hours is defined as one (1) working day. <br />iii. Passwords are not to be shared. <br />iv. Passwords must be at least eight (8) characters. <br />V. Passwords must be a non -dictionary word. <br />vi. Passwords must not be stored in readable format on the computer or server. <br />vii. Passwords must be changed every ninety (90) days or less. <br />viii. Passwords must be changed if revealed or compromised. <br />ix. Passwords must be composed of characters from at least three (3) of the <br />following four (4) groups from the standard keyboard: <br />A. Upper case letters (A-Z) <br />B. Lower case letters (a-z) <br />C. Arabic numerals (0-9) <br />D. Special characters (!,@,#, etc.) <br />h. Data Destruction. When no longer needed, all PII must be cleared, purged, or destroyed <br />consistent with MIST SP 800-88, Guidelines for Media Sanitization, such that the PH <br />cannot be retrieved. <br />i. System Timeout. The systems providing access to PII must provide an automatic timeout, <br />requiring re -authentication of the user session after no more than twenty (20) minutes <br />of inactivity. <br />j. Warning Banners. The systems providing access to PH must display a warning banner <br />stating, at a minimum: <br />L Data is confidential; <br />ii. Systems are logged; <br />iii. System use is for business purposes only, by authorized users; and <br />iv. Users shall log off the system immediately if they do not agree with these <br />requirements. <br />k. System Logging. <br />i. The systems which provide access to PII must maintain an automated audit trail <br />that can identify the user or system process which initiates a request for PH or <br />alters PII. <br />ii. The audit trail shall: <br />A. Be date and time stamped; <br />7 <br />City Council 7 — 123 7/15/2025 <br />
The URL can be used to link to this page
Your browser does not support the video tag.