Laserfiche WebLink
18 of 18 <br /> <br />ATTACHMENT F <br />CRITICAL INFRASTRUCTURE SECURITY AND RESILIENCE <br /> <br />1. Efforts to strengthen the Security and Resilience of Critical Infrastructure against both Physical and <br />Cyber Threats. <br /> <br />The Recipient states that rows marked with “X” in the following table are accurate: <br /> <br />X The Recipient demonstrates, prior to the signing of this agreement, effort to <br />consider and address physical and cyber security risks relevant to the <br />transportation mode and type and scale of the activities. <br /> The Recipient appropriately considered and addressed physical and cyber <br />security and resilience in the planning, design and oversight of the project, as <br />determined by the Department and the Department of Homeland Security. <br /> The Recipient complies with 2 CFR 200.216 and the prohibition on certain <br />telecommunications and video surveillance services or equipment. <br /> <br />2. Supporting Narrative. <br />All City of Santa Ana staff are required, as part of their employment, to be up to date on cyber security <br />training courses and workplace safety best practices. As cyberattacks against state and local governments are <br />on the rise, special attention is made to defend against ransomware, social engineering, and phishing. The <br />City’s IT department promotes the reporting of any potential threats and employees are required to change <br />their work passwords every 90 days. <br />