all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Vendor's Giving Vendor SOC/Due Diligence

Add to bookmarks
Jan. 16, 2024, 9:35 p.m. | /u/Tempiz

cybersecurity www.reddit.com

Hi folks,

Looking to get your comments and opinions on this practice.

I work GRC in a regulated industry that requires vendor reviews. Lately I have seen many of our SMB vendors that rely primarily on SaaS cloud products sending their SaaS providers and data center SOC2's to our team for review in place of any documentation of their own security posture. Their argument is that the data is hosted/stored in their vendor's platform/datacenter, so the vendor SOC2 should cover …

center cloud comments cybersecurity data data center due diligence grc industry opinions practice products review reviews saas saas providers smb soc soc2 team vendor vendors work

Visit resource

More from www.reddit.com / cybersecurity

Penetration testing report 2 hours ago | www.reddit.com
app cybersecurity penetration penetration testing +2
UCF wins the National Collegiate Cyber Defense Competition 3 hours ago | www.reddit.com
competition cyber cyber defense cybersecurity +4
How much knowledge do you guys know about the industry that you work in? 8 hours ago | www.reddit.com
banking cybersecurity etc gas +8
Cisco reveals zero-day attacks used by hackers to attack government networks in major threat campaign 10 hours ago | www.reddit.com
attack attacks campaign cisco +7
Any Fortune 100 company go all in on Microsoft E5 Security Suite? 20 hours ago | www.reddit.com
all in cybersecurity defender defenders +12
Blueteam Certification like cybersecurity engineers 21 hours ago | www.reddit.com
architect blueteam certification certifications +12
Fake job interviews target developers with new Python backdoor 1 day ago | www.reddit.com
backdoor cybersecurity developers fake +7
Passkeys: A Shattered Dream 1 day, 1 hour ago | www.reddit.com
cybersecurity dream passkeys
Cyberattack Gold: SBOMs Offer an Easy Census of Vulnerable Software 1 day, 1 hour ago | www.reddit.com
census cyberattack cybersecurity easy +4

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Senior Security Researcher, SIEM

@ Huntress | Remote Canada
View on infosec-jobs.com

Senior Application Security Engineer

@ Revinate | San Francisco Bay Area
View on infosec-jobs.com

Cyber Security Manager

@ American Express Global Business Travel | United States - New York - Virtual Location
View on infosec-jobs.com

Incident Responder Intern

@ Bentley Systems | Remote, PA, US
View on infosec-jobs.com

SC2024-003533 Senior Online Vulnerability Assessment Analyst (CTS) - THU 9 May

@ EMW, Inc. | Mons, Wallonia, Belgium
View on infosec-jobs.com
View more jobs