Under active development — Content is continuously updated and improved · Last updated Feb 18, 2026, 2:55 AM UTC

5.19—Information security in supplier relationships

>Control Description

Control 5.19 - Information security in supplier relationships. This control is part of the Organizational Controls theme in ISO 27001:2022 Annex A.

>NIST CSF 2.0 Mappings

GV.OV-01 GV.OV-02 GV.OV-03 GV.RM-05 GV.SC-01 GV.SC-03 GV.SC-04 GV.SC-05 GV.SC-06 GV.SC-07 GV.SC-09 GV.SC-10 ID.AM-08 ID.IM-02 ID.RA-09 ID.RA-10

Control mappings sourced from NIST OLIR Catalog (public domain).

>Cross-Framework Mappings

Ask AI

Configure your API key to use AI features.