Mechanisms exist to develop and implement a spare parts strategy to ensure that an adequate supply of critical components is available to meet operational needs.
Mechanisms exist to mitigate the risks associated with third-party access to the organization’s systems and data.
Mechanisms exist to conduct a risk assessment prior to the acquisition or outsourcing of technology-related services.
Mechanisms exist to require External Service Providers (ESPs) to identify and document the business need for ports, protocols and other services it requires to operate its processes and technologies.
Mechanisms exist to ensure that the interests of external service providers are consistent with and reflect organizational interests.
Mechanisms exist to restrict the location of information processing/storage based on business requirements.
Mechanisms exist to identify, regularly review and document third-party confidentiality, Non-Disclosure Agreements (NDAs) and other contracts that reflect the organization’s needs to protect systems and data.
Mechanisms exist to compel External Service Providers (ESPs) to provide notification of actual or potential compromises in the supply chain that can potentially affect or have adversely affected systems, applications and/or services that the organization utilizes.
Mechanisms exist to ensure cybersecurity & data privacy requirements are included in contracts that flow-down to applicable sub-contractors and suppliers.
Mechanisms exist to ensure External Service Providers (ESPs) use unique authentication factors for each of its customers.
Passcode