Guest user Created: Jul 05, 2018 Last commented: Jul 05, 2018

IT security questionnaire

Do you have an IT Security Questionnaire template that I can send to third parties as part of the IT Security Standard – Third Party Risk Management procedure?

0 0

Assign topic to the user

Select user

Expert

Rhand Leal Jul 05, 2018

“….as part of the risk assessment the IT Security Questionnaire is completed by third parties providing details around their information security management system and control environment.”

As a growing publicly listed firm, my IT team get a lot of new software requests from our staff. Due to the maturity of some of the Fintechs that I’m asked to review I can tell that IT security framework is not that great. Hence the need for a questionnaire.

Answer: Included in the toolkit you bough there is an Internal Audit Checklist template that you can use to evaluate IT aspects of information security management.

Sections covering the controls from Annex A, specially sections A.6.2, A.9, A.10., A.12, A.13, A.14 and A.15 can help you evaluate not only your own infrastructure but also from third parties.

This template is locate on folder 10 Procedure for Internal Audit.

Quote

0 0

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Jul 05, 2018

Expert Advice Community