Source: www.upguard.com
Free ISO 27001 Vendor Questionnaire Template (2023 Edition) | UpGuard
ISO 27001 is commonly used for assessing supply chain and data breach risks during due diligence. Though this security assessment template only broadly covers Supply Chain Risk Management aspects of ISO 27001, it should still be sufficient for identifying potential deficiencies in a vendor’s security control strategy requiring further investigation.
Yes No Not applicable Vendor to add comments Are there internal or external issues negatively impacting your ability to achieve the intended outcomes of your Information Security Management System (ISMS)? Yes No Not applicable Vendor to add comments Can you define and decide on the limits and areas where the information security management system (ISMS) will be applied?
Yes No Not applicable Vendor to add comments Do you have processes supporting the continuous improvement of your information security management system
Yes No Not applicable Vendor to add comments Are there internal or external issues negatively impacting your ability to achieve the intended outcomes of your Information Security Management System (ISMS)? Yes No Not applicable Vendor to add comments Can you define and decide on the limits and areas where the information security management system (ISMS) will be applied?
Yes No Not applicable Vendor to add comments Do you have processes supporting the continuous improvement of your information security management system
Related Articles
Community Partners
DevOps Careers