Legislation Details

File #: 22-0075   
On agenda: 2/22/2022 Final action: 2/22/2022
Enactment date: Enactment #: Agreement No. 22-063
Recommended Action(s)
 		Approve and authorize the Chairman to execute First Amendment to Agreement with Troncore, LLC, for additional IT security auditing and testing, effective upon execution, with no change to the term of October 5, 2020 through October 5, 2025 and increasing the maximum by $300,000 to a total of $615,000.
Attachments: 1. Agenda Item, 2. Agreement A-22-063

DATE:                     February 22, 2022

 

TO:                     Board of Supervisors

 

SUBMITTED BY:                     Robert W. Bash, Director, Internal Services/Chief Information Officer

 

SUBJECT:                     Amendment to Agreement with Troncore, LLC.

 

RECOMMENDED ACTION(S):

TITLE

Approve and authorize the Chairman to execute First Amendment to Agreement with Troncore, LLC, for additional IT security auditing and testing, effective upon execution, with no change to the term of October 5, 2020 through October 5, 2025 and increasing the maximum by $300,000 to a total of $615,000.

REPORT

Approval of the recommended action will increase the maximum agreement compensation to account for costs to perform the increasingly stringent security testing required for Health Insurance Portability and Accountability Act (HIPAA) compliance. This item is countywide.

 

ALTERNATIVE ACTION(S):

 

Should your Board not approve the recommended action, the Internal Services Department (ISD) would be unable to meet HIPAA compliance requirements for information technology (IT) security.

 

FISCAL IMPACT:

 

There is no increase in Net County Cost associated with the recommended action. The maximum compensation is $615,000 and will be funded with portions of the rates charged to user departments. Sufficient appropriations and estimated revenues have been included in the ISD - IT Org 8905 FY 2021-22 Adopted Budget and will be requested in future years.

 

DISCUSSION:

 

On October 6, 2020, your Board approved Agreement No. 20-394 with Troncore, LLC for IT security auditing and testing services for the County’s IT systems. After commencing services, ISD - ITS identified a need to amplify these services for continued compliance with increasingly stringent HIPPA regulations, as well as a greater need to increase the security of the County’s IT systems from possible outside intrusions. Should an intrusion attempt be successful, considerable amounts of sensitive health information in the possession of the County could become compromised.

 

Approval of the recommended action will allow ISD - ITS to increase the security of the County’s IT systems and continue to comply with HIPAA regulations.

 

REFERENCE MATERIAL:

 

BAI #33, October 6, 2020

 

ATTACHMENTS INCLUDED AND/OR ON FILE:

 

On file with Clerk - First Amendment

 

CAO ANALYST:

 

Sonia M. De La Rosa