I'm glad my answer was helpful! The CAIQ I mentioned before is designed to assess the security controls of all three providers – SaaS, IaaS, and PaaS. The questionnaire contains yes/no questions, which makes it easy to determine whether the ...
Good day Jamie, Thank you for this insightful information - much appreciated! What we attempt in our assessment (my team is only responsible for the Security assessment aspect) we have the basic questions in terms of Security posture, policies, ...
This message was posted by a user wishing to remain anonymous Thank you for this insightful information Christine! How would you recommend vetting for IaaS and PaaS supplier (only in terms of the Security Controls)? Anyone in the community ...
Michael, please see the HECVAT (Higher Education Cloud Vendor Assessment Tool) that's used by Universities to assess cloud vendors. These questions apply to any cloud vendor. Here's the link: Higher Education Community Vendor Assessment Toolkit ...
Hi there, By "Bank", it is correct to assume sub-prime mortgage bankers/lender is what you mean by "non-traditional bank"? I managed a web-based inter-business hosted lead and application tracking solution (in 1996, we didn't call it a ...
Join a community dedicated to an area of third-party risk including contracts, infosec, risk assessments, policies, and more.
Network with others who are running very mature or complex programs at their organizations that require a unique way of thinking.
Meet, connect, and network with other users using the same third-party risk tool as you - get support and share new ideas and best practices.
Download the latest guides, infographics, samples, whitepapers, checklists, and more that can help guide you through best practices on third party risk. Visit Resources
Register and join live webinars to learn current trends and best practices from knowledgeable experts. Free CPE eligible webinars. Register Now
Make sure to sign up to our notification list and be one of the first to know about our self-paced eLearning courses.Get Notified