Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Devanha
Viewer
‎12-16-2019 03:53 AM
‎12-16-2019 03:53 AM

RFP Security Assessment

Hi,

 

can anyone point me in the direction of a good source of vendor assessment templates?  I need to create a set and I'm struggling with writers block.  I'm looking for something that can get me started.  This is for general security questions, not just GDPR.

 

Thanks in advance,

 

Mark Mair

Reply
0 Kudos
2 Replies
Chuxing
Community Champion
‎12-16-2019 10:39 AM
‎12-16-2019 10:39 AM

I would probably start with security policies, both on your side and on vendor side. 

Perhaps the next thing is compliance,  again on your side and on vendor side.


____________________________________
Chuxing Chen, Ph.D., CISSP, PMP
Reply
0 Kudos
emb021
Advocate I
‎12-16-2019 12:09 PM
‎12-16-2019 12:09 PM

Not seen anything free.

 

Most of what I have seen have been questionnaires along the lines of ISO27001 controls, making sure that there are policies in place and the like.

 

Many questionnaires will ask for third party reports, such as SOC 1 & 2 reports (in the US), ISO27001 assessment or certification, HIPAA assessment (if healthcare), etc.

 

 

---
Michael Brown, CISSP, HCISPP, CISA, CISM, CGEIT, CRISC, CDPSE, GSLC, GSTRT, GLEG, GSNA, CIST, CIGE, ISSA Fellow
Reply
0 Kudos