Guest user Created: Aug 26, 2021 Last commented: Aug 26, 2021

Supplier information security requirements

For the implementation of ISO 27001:13 in part A15. Supplier relationships now I really need the supplier information security requirements. Could you send me this file? thanks in advance.

0 0

Assign topic to the user

Select user

Expert

Rhand Leal Aug 26, 2021

Please note that the supplier information security requirements are based on the results of risk assessment and applicable legal requirements, which are exclusive for each organization because they are related to their context and risk appetite.

For example, two organizations may have the same cloud provider, but because they have different risk appetites, a requirement for the less risk+tolerant organization may not be used by the more risk +olerant one.

Included in your toolkit there is a list of commonly adopted security clauses for suppliers and partners that can help you define your supplier information security requirements. This template is on folder 08 Annex A Security Controls >> A.15 Supplier Relationships

This article will provide you a further explanation about security clauses for suppliers:

Which security clauses to use for supplier agreements? https://advisera.com/27001academy/blog/2017/06/19/which-security-clauses-to-use-for-supplier-agreements/

Quote

0 0

Comment as guest or Sign in

HTML tags are not allowed

Name *

Email *

I accept the Privacy and Terms

Notify me when someone replies

Aug 26, 2021

Expert Advice Community