Supplier Relationships Security

The list of ISO 27001 Supplier Relationships Security Controls.

Supplier Relationships Security is an ISO 27001 operational capability.

Operational Capabilities is an attribute to view controls from a practitioner’s perspective of information security capabilities.

ISO 27001 attributes

ISO 27001 Attributes Explained

ISO 27001 Attributes Introduced in the 2022 update to the standard, in this ultimate guide to ISO 27001 Attributes you

ISO 27001 Attributes Explained Read More »

ISO 27001 Annex A 8.30 Outsourced Development

ISO 27001 Annex A 8.30 Outsourced Development

ISO 27001 Annex A 8.30 Outsourced Development is a security control that mandates strict supervision of third-party vendors to ensuring

ISO 27001 Annex A 8.30 Outsourced Development Read More »

ISO 27001 Annex A 6.6 Confidentiality or non-disclosure agreements

ISO 27001 Annex A 6.6 Confidentiality or Non-disclosure Agreements

ISO 27001 Annex A 6.6 is a security control that requires organizations to establish and maintain formal non-disclosure agreements. The

ISO 27001 Annex A 6.6 Confidentiality or Non-disclosure Agreements Read More »

ISO 27001 Annex A 5.23 Information security for use of cloud services

ISO 27001 Annex A 5.23 Information Security for Use of Cloud Services

ISO 27001 Annex A 5.23 Information Security for Use of Cloud Services is a security control that mandates managing third-party

ISO 27001 Annex A 5.23 Information Security for Use of Cloud Services Read More »

ISO 27001 Annex A 5.22 Monitoring, review and change management of supplier services

ISO 27001 Annex A 5.22 Monitoring, Review and Change Management of Supplier Services

ISO 27001 Annex A 5.22 Monitor, Review and Change Management of Supplier Services is a security control that mandates the

ISO 27001 Annex A 5.22 Monitoring, Review and Change Management of Supplier Services Read More »

ISO 27001:2022 Annex A 5.21 Managing information security in the ICT supply chain

ISO 27001 Annex A 5.21 Managing Information Security in the ICT Supply Chain

ISO 27001 Annex A 5.21 Managing information security in the ICT supply chain is a security control that requires organisations

ISO 27001 Annex A 5.21 Managing Information Security in the ICT Supply Chain Read More »

ISO 27001 Annex A 5.20 Addressing information security within supplier agreements

ISO 27001 Annex A 5.20 Addressing Information Security Within Supplier Agreements

ISO 27001 Annex A 5.20 is a security control that requires organisations to establish and formalise security requirements within legal

ISO 27001 Annex A 5.20 Addressing Information Security Within Supplier Agreements Read More »

ISO 27001 Annex A 5.19 Information security in supplier relationships

ISO 27001 Annex A 5.19 Information Security in Supplier Relationships

ISO 27001 Annex A 5.19 is a security control that mandates the establishment of processes and procedures to manage risks

ISO 27001 Annex A 5.19 Information Security in Supplier Relationships Read More »