>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

15.415.4

>Control Description

Ensure service provider contracts include security requirements. Example requirements may include minimum security program requirements, security incident and/or data breach notification and response, data encryption requirements, and data disposal commitments. These security requirements must be consistent with the enterprise’s service provider management policy. Review service provider contracts annually to ensure contracts are not missing security requirements.

>Cross-Framework Mappings

SCF

IAO-03.2
Compare
PRI-07.1
Compare
TPM-03.2
Compare
TPM-04
Compare
TPM-05
Compare

Ask AI

Configure your API key to use AI features.