Modification and Justification of SLA
Finman Acount Management, LLC, Datanal, Inc., and Minertek, Inc.

Recommendations
Background and Rationale
The physical protection of Finman’s data will need to be protected by proper configuration and setup of data network infrastructure. Both thirds parties will need to ensure ACL systems are set and configured to ensure access and data flow is running properly. There is to be granted access to only privilege user’s assigned and agreed upon. Authentication and authorization is to be set in place to ensure protection with Finman’s data resources along with network resources. Authentication and authorization can be applied by enforcing Group Polices. Each third party will need to have proper verification set in place otherwise known as Third Party Verification (TPV). TPV will provide both parties to meet industry standards such as Federal Communication Commission and Federal Trade Commission. Backup solutions for data storage will need to be set in place to ensure integrity of Finman’s data and meets industry standards. Statement of Intent
Auditing, encryption and threat management will need to be set in place to ensure no misuse of Finman’s resources are allowed. IT Security Management guidelines will need to be followed to ensure customers are educated and no misuse or abuse to Finman’s IT services or resources are allowed. Finman’s Intellectual property such as patents, copyrights, and trademarks are to be protected by identifying, labeling, locking it up, and educating employees. Utilizing Windows software trace preprocessor (WPP) can help with the tracing of software components.

Justifications

IT service management (ITSM) focuses on control access by utilizing various functions, processes, and systems necessary to manage the full lifecycle of IT services ( IT Service Management by Ernest Brewster, Richard