Open navigation menu

Scribd

0% found this document useful (0 votes)

146 views2 pages

IC Vendor Risk Assessment Template

This vendor risk assessment template lists 40 potential risks a vendor may pose in areas like privacy, security, access controls, and compliance. The risks are rated on impact from low to high, with customer data security breaches rated as the highest risk and risk assessment process failures as the lowest. Adhering to privacy laws and maintaining effective information security teams are also identified as medium risks.

Uploaded by

Jessica Christy Sitio

Copyright

© © All Rights Reserved

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as XLSX, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

146 views2 pages

IC Vendor Risk Assessment Template

This vendor risk assessment template lists 40 potential risks a vendor may pose in areas like privacy, security, access controls, and compliance. The risks are rated on impact from low to high, with customer data security breaches rated as the highest risk and risk assessment process failures as the lowest. Adhering to privacy laws and maintaining effective information security teams are also identified as medium risks.

Uploaded by

Jessica Christy Sitio

Copyright

© © All Rights Reserved

We take content rights seriously. If you suspect this is your content, claim it here.

Available Formats

Download as XLSX, PDF, TXT or read online on Scribd

You are on page 1/ 2

VENDOR RISK ASSESSMENT TEMPLATE

RISK
# RISK ASSESSMENT DESCRIPTION NOTES
RATING

1 Risk Assessment process failure LOW

2 Failure to adhere to privacy laws MEDIUM

3 Customer data security breach HIGH

4 Breakdown of Information Security team N/A

5 Breach of non-disclosure agreements

6 External party access to non-public information

7 Asset management policy breach

8 Non-disclosure / confidentiality breach

9 Systems access breach

10 Building access breach

11 Visitor access issues

12 Identification badge / keyless entry issues

13 Non-public printed material security issues

14 System change procedure issues

15 Routine testing problems

16 Password protection system breakdown

17 Password sharing issues

18 Third-party access breach of non-public data

19 Instant messaging protection issues

20 Incident response plan failure

21 Lack of compliance and ethics training

22 Lack of compliance and ethics policy adherence

23 Inactive user access maintenance problems

24
25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

You might also like

Final CRI Profile v2.0 Public. Date 2024.02.29 2
No ratings yet
Final CRI Profile v2.0 Public. Date 2024.02.29 2
3,392 pages
ISMS-DOC-A06-4 Mobile Device Policy
No ratings yet
ISMS-DOC-A06-4 Mobile Device Policy
9 pages
Practical Secure Code Review - 2023
No ratings yet
Practical Secure Code Review - 2023
185 pages
PME 2023 IT Guide
No ratings yet
PME 2023 IT Guide
132 pages
NZISM ISM Document v. 3.6 September 2022
No ratings yet
NZISM ISM Document v. 3.6 September 2022
364 pages
Cyber Trust Self Assessment V202208
No ratings yet
Cyber Trust Self Assessment V202208
74 pages
Notizen SSCP
No ratings yet
Notizen SSCP
37 pages
Cyber Threat Intelligence Report Template
No ratings yet
Cyber Threat Intelligence Report Template
3 pages
Business Continuity Planning Policies
No ratings yet
Business Continuity Planning Policies
42 pages
Supplier Quality/Purchasing Controls Successful Practices
100% (2)
Supplier Quality/Purchasing Controls Successful Practices
23 pages
Hello
No ratings yet
Hello
39 pages
Coassurance KULeuven Distrinet
No ratings yet
Coassurance KULeuven Distrinet
48 pages
Action Plan Template ProjectManager WLNK V2
No ratings yet
Action Plan Template ProjectManager WLNK V2
15 pages
OWASPv4 Checklist (AutoRecovered)
No ratings yet
OWASPv4 Checklist (AutoRecovered)
30 pages
Secure Development and Managing Technical Debt
No ratings yet
Secure Development and Managing Technical Debt
66 pages
Cybersecurity Strategy For Cyber Building - Sign
No ratings yet
Cybersecurity Strategy For Cyber Building - Sign
11 pages
Data Protection
No ratings yet
Data Protection
5 pages
Risk Management
No ratings yet
Risk Management
4 pages
Op GD Software Development Procedure
No ratings yet
Op GD Software Development Procedure
9 pages
Information Security Delivery - Scenario 7
No ratings yet
Information Security Delivery - Scenario 7
21 pages
ISO27001 Management System Clauses Mar 23
No ratings yet
ISO27001 Management System Clauses Mar 23
1 page
Cybersecurity Complete Brochure Compressed
100% (1)
Cybersecurity Complete Brochure Compressed
25 pages
GRC Comparative Analysis
No ratings yet
GRC Comparative Analysis
9 pages
Cyber Security Workplace
No ratings yet
Cyber Security Workplace
15 pages
CSF PF To Sp800 53r5 Mappings
No ratings yet
CSF PF To Sp800 53r5 Mappings
285 pages
Botium Toys Checklist
No ratings yet
Botium Toys Checklist
2 pages
Example Coop Continuity of Operations Program
No ratings yet
Example Coop Continuity of Operations Program
12 pages
Security - Secureframe - SOC 2 and ISO 27001 Compliance
No ratings yet
Security - Secureframe - SOC 2 and ISO 27001 Compliance
6 pages
RSL SecureCodeReview Example Report
No ratings yet
RSL SecureCodeReview Example Report
28 pages
Ur E27 New Apr 2022
No ratings yet
Ur E27 New Apr 2022
14 pages
8.9 (Management Reviews) (AUS)
No ratings yet
8.9 (Management Reviews) (AUS)
3 pages
Auditing Guide: Annex 2 - Aide Mémoire
No ratings yet
Auditing Guide: Annex 2 - Aide Mémoire
51 pages
Questionnaire Security Assessment 2020
No ratings yet
Questionnaire Security Assessment 2020
2 pages
CSA 312 Sec Dev Artifacts For Components (v3 - 2)
No ratings yet
CSA 312 Sec Dev Artifacts For Components (v3 - 2)
9 pages
FSISAC GenerativeAI-VendorEvaluation&QualitativeRiskAssessmentTool
No ratings yet
FSISAC GenerativeAI-VendorEvaluation&QualitativeRiskAssessmentTool
8 pages
RART
No ratings yet
RART
2 pages
Secure Coding Practices For: White Paper
No ratings yet
Secure Coding Practices For: White Paper
15 pages
Security Plan
No ratings yet
Security Plan
9 pages
CS Lifecycle
No ratings yet
CS Lifecycle
8 pages
SR - No. Audit Checklists Items Interviewed R/Per. Remarks
No ratings yet
SR - No. Audit Checklists Items Interviewed R/Per. Remarks
4 pages
BSIMM V Activities
No ratings yet
BSIMM V Activities
32 pages
Firewall Checklist PDF
No ratings yet
Firewall Checklist PDF
5 pages
ASI Auditor Accreditation Procedure v1.2 FINAL 19february2019 PDF
No ratings yet
ASI Auditor Accreditation Procedure v1.2 FINAL 19february2019 PDF
25 pages
64be88b16d5329e132a64044 - Secure Code Review Cheat Sheet
No ratings yet
64be88b16d5329e132a64044 - Secure Code Review Cheat Sheet
1 page
Note Assess Report
No ratings yet
Note Assess Report
7 pages
Cybersecurity Job Roles, Responsibilities & Certifications
No ratings yet
Cybersecurity Job Roles, Responsibilities & Certifications
4 pages
BCP Worksheet
No ratings yet
BCP Worksheet
15 pages
ICS Control System Security
No ratings yet
ICS Control System Security
7 pages
Security Policies
No ratings yet
Security Policies
10 pages
Seven Steps To Creating An Effective Computer Security Incident Response Team
100% (1)
Seven Steps To Creating An Effective Computer Security Incident Response Team
8 pages
Data Centre Access and Management Policy
No ratings yet
Data Centre Access and Management Policy
5 pages
Any Year Calendar2
No ratings yet
Any Year Calendar2
3 pages
Sacramento State Level 1 Systems Access Review Template
No ratings yet
Sacramento State Level 1 Systems Access Review Template
4 pages
SDLC Phase 08 Implementation Phase Multiple Hardware
No ratings yet
SDLC Phase 08 Implementation Phase Multiple Hardware
12 pages
Data Security: SOFTWARE RESTRICTIONS: The Use of Software Means To Restrict Access
No ratings yet
Data Security: SOFTWARE RESTRICTIONS: The Use of Software Means To Restrict Access
4 pages
NESA Compliance Service - Paladion Networks - UAE
No ratings yet
NESA Compliance Service - Paladion Networks - UAE
8 pages
A Cyber Attack Simulation For Teaching Cybersecurity-4
No ratings yet
A Cyber Attack Simulation For Teaching Cybersecurity-4
13 pages
CO Product-Security-Infographic CS EN
No ratings yet
CO Product-Security-Infographic CS EN
1 page
Infographic - 15 Ways To Protect Your Business From A Cyber Attack PDF
No ratings yet
Infographic - 15 Ways To Protect Your Business From A Cyber Attack PDF
1 page
Kiwiqa Services: Web Application Vapt Report
No ratings yet
Kiwiqa Services: Web Application Vapt Report
25 pages
Vulnerability Disclosure Policy
No ratings yet
Vulnerability Disclosure Policy
8 pages
E - Governance: by Abhinav Bhargava Vit-Cs Vii Sem 08EVJCS002
No ratings yet
E - Governance: by Abhinav Bhargava Vit-Cs Vii Sem 08EVJCS002
17 pages
Manage Your Integration Iso 9001 To Iso 27001 Gap Guide
No ratings yet
Manage Your Integration Iso 9001 To Iso 27001 Gap Guide
4 pages
Certified Information Privacy Technologist A Complete Guide
From Everand
Certified Information Privacy Technologist A Complete Guide
Gerardus Blokdyk
No ratings yet