Specifications include, but are not limited to: Technical Security Requirements: Access to be provided via remote terminal/workstation over the Public Internet. Remote data access will be protected by the vendor using VPN with two-factor authentication, encryption, and Network Access Control security technologies. The vendor will include the safeguards in place to secure the receipt and transmission of customer data. Wireless Local Area Network (WLAN) or wireless access points, if utilized by the vendor, must be secured in accordance with NIST 800-153; NIST 800-153 provides guidelines for Securing Wireless Local Area Networks. The vendor will utilize and maintain technological (logical) access controls that limit access to customer data to only authorized users. The vendor will implement a Network Access Control, a Network Admission Control (NAC) solution or commensurate security controls to enforce security policy compliance on all devices that attempt to gain access to, or use, the customer data. The NAC/NAC-like solution shall be employed to authenticate and authorize users and devices.
