Section 10.94 Contracts and Agreements Flashcards
Objectives 2.2 Explain common threat vectors and attack surfaces. Objectives 2.3 Explain various types of vulnerabilities. Objectives 5.3 Explain the processes associated with third-party risk assessment and management.
Types of Contracts and Agreements
Basic Contract
Versatile tool that formally establishes a relationship between two parties
● Defines roles, responsibilities, and consequences for non-compliance
● Specifies terms like payment structure, delivery timelines, and product specifications
Service Level Agreement (SLA)
Defines the standard of service a client can expect from a provider
● Includes performance benchmarks and penalties for deviations
Memorandum of Agreement (MOA)
Formal, outlines specific responsibilities and roles
Memorandum of Understanding (MOU)
Less binding, expresses mutual intent without detailed specifics
Master Service Agreement (MSA)
Blanket agreement that covers general terms of engagement across multiple transactions
● Used for recurring client relationships, supplemented by Statements of Work
Statement of Work (SOW)
Specifies project details, deliverables, timelines, and milestones
● Provides in-depth project-related information
Non-Disclosure Agreement (NDA)
Ensures confidentiality of sensitive information shared during
negotiations
● Commitment to privacy, protecting proprietary data
Business Partnership Agreement (BPA) or Joint Venture Agreement (JV)
Goes beyond basic contracts when two entities collaborate
● Outlines partnership nature, profit-sharing, decision-making, and exit strategies
● Defines ownership of intellectual property and revenue distribution
