Review of Control A13.1
Assign topic to the user
First of all, you have to check the contract/service agreement your organization has with AWS regarding security clauses. Normally such reviews are performed by means of audits (internal or by AWS certification bodies), or results of penetration tests.
These articles will provide you a further explanation about handling supplier security:
- 6-step process for handling supplier security according to ISO 27001 https://advisera.com/27001academy/blog/2014/06/30/6-step-process-for-handling-supplier-security-according-to-iso-27001/
- Which security clauses to use for supplier agreements? https://advisera.com/27001academy/blog/2017/06/19/which-security-clauses-to-use-for-supplier-agreements/
Comment as guest or Sign in
Sep 21, 2019