all InfoSec news
Is SOC 2 Report Sufficient for Vendor Risk Management?
May 4, 2024, 6:25 a.m. | /u/techno_it
cybersecurity www.reddit.com
Hope you all are in good health and high spirits
Our organization is in the process of buying a software application from a vendor who will also handle deployment and ongoing support. As part of our vendor risk management, we sent a detailed questionnaire to the vendor to assess their security and compliance measures. However, the vendor declined to answer our questions directly and instead provided a SOC 2 report audited by a well-known firm. They also …
application cybersecurity deployment friends good health hello high hope management organization process questionnaire report risk risk management soc soc 2 software support vendor vendor risk management
More from www.reddit.com / cybersecurity
Are password requirements useless?
13 hours ago |
www.reddit.com
Managed SIEM provider recommendations
21 hours ago |
www.reddit.com
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Information Security Senior Analyst
@ Media.Monks | Americas: USA + Canada
Senior Program Associate- Cybersecurity Awareness (Remote)
@ Fannie Mae | Washington, DC, United States
Cybersecurity Specialist - Endpoint Security
@ Hexagon US Federal | Huntsville, AL