Infosec Chicago

Statement of Work - ITBOG COVID-19 vulnerability scan

This Statement of Work (“SOW”) is entered into and made effective as of January 20, 2021 (“Effective Date”) and is made pursuant to that certain Infosec Chicago Master Services Agreement entered into as of (“Agreement”) by and between Infosec Chicago (“Infosec”), and (“Client”).


Capitalized terms used herein but not otherwise defined herein have the meanings ascribed to such terms in the Agreement.  If the terms and/or conditions of this SOW conflict with the terms and/or conditions of the Agreement and/or with any other SOW, the terms and/or conditions of this SOW will control (unless otherwise expressly provided herein or in the Agreement) solely with respect to the Services performed under this SOW. 


1.   Services.

a.  Description of Services. Infosec shall provide the following services (“Services”) as further described herein.

i.  Information Security Consulting.

Infosec shall provide Client with evaluation of solutions for managing Client’s information security. Such information security consulting services may include a vulnerability scan using Nessus, other industry standard vulnerability scanning tools, and custom scripts developed by Infosec.


2.   Term.

The initial term of this SOW shall commence on the Effective Date and shall continue for a period of 1 months thereafter, unless terminated earlier in accordance with the terms and conditions of the Agreement.


3.   Fees and Payment Terms.

In consideration of Infosec’s performance of the Services in accordance with this SOW and the Agreement, Client will pay Infosec a fixed fee in the amount of $0.00.  Such fee shall be due and payable as follows: 100 percent (100%) upon execution of this SOW and on the first of each month thereafter.

In the event out-of-scope services are performed by Infosec, then Client agrees to pay Infosec at its then-current hourly rates for such services.  Unless otherwise expressly agreed by the parties, all payments shall be made in accordance with the terms and conditions of the Agreement.


4.   Additional Terms

a.  Scope.

Client sets the scope of the scan(s) to include the IP ranges specified below.  Client agrees that they have authorization to scan these IP ranges, and shall take full responsibility for any adverse legal or other action which arises from scanning IP ranges they do not have authorization to scan.  Any IPs belonging to cloud applications shall not be scanned under any circumstances.

Authorized IP ranges:

b.  Unintended Damage.

Infosec shall take all precautions necessary to minimize the risk of damage to any of Client's systems and shall not use any scans or scripts which have been known to cause damage in the past; however, when scanning systems for ways to use them which they were not intended, there is always a risk that unforeseen damage could occur, although this is extremely rare and has not happened before with any systems that Infosec has scanned.  Client understands this is an inherent risk with vulnerability scanning and shall not hold Infosec accountable for any unintended damage that occurs.

c.  One Time Offer.

Client understands that this free vulnerability scan is offered as an effort to keep the online community safe during increased remote access due to the COVID-19 outbreak and increased work from home requests.  This is for a single vulnerability scan and does not override pricing or agreements made prior to or following this SOW.

Leave this empty:

Signature arrow

Signed by Brian Semrau
Signed On: March 17, 2020

Signature Certificate
Document name: Statement of Work - ITBOG COVID-19 vulnerability scan
lock iconUnique Document ID: 0e81851177fe2ee25d5bed067d9631384a6f40f9
Timestamp Audit
March 17, 2020 8:04 am CSTStatement of Work - ITBOG COVID-19 vulnerability scan Uploaded by Brian Semrau - [email protected] IP,