Open navigation menu

Welcome to Scribd!

IC Vendor Risk Assessment Template

Uploaded by

Jessica Christy Sitio

0% found this document useful (0 votes)

57 views2 pages

This vendor risk assessment template lists 40 potential risks a vendor may pose in areas like privacy, security, access controls, and compliance. The risks are rated on impact from low to high, with customer data security breaches rated as the highest risk and risk assessment process failures as the lowest. Adhering to privacy laws and maintaining effective information security teams are also identified as medium risks.

Original Description:

Original Title

IC-Vendor-Risk-Assessment-Template

Copyright

© © All Rights Reserved

Available Formats

XLSX, PDF, TXT or read online from Scribd

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Report this Document

This vendor risk assessment template lists 40 potential risks a vendor may pose in areas like privacy, security, access controls, and compliance. The risks are rated on impact from low to high, with customer data security breaches rated as the highest risk and risk assessment process failures as the lowest. Adhering to privacy laws and maintaining effective information security teams are also identified as medium risks.

Copyright:

© All Rights Reserved

Available Formats

Download as XLSX, PDF, TXT or read online from Scribd

Flag for inappropriate content

0% found this document useful (0 votes)

57 views2 pages

IC Vendor Risk Assessment Template

Uploaded by

Jessica Christy Sitio

This vendor risk assessment template lists 40 potential risks a vendor may pose in areas like privacy, security, access controls, and compliance. The risks are rated on impact from low to high, with customer data security breaches rated as the highest risk and risk assessment process failures as the lowest. Adhering to privacy laws and maintaining effective information security teams are also identified as medium risks.

Copyright:

© All Rights Reserved

Available Formats

Download as XLSX, PDF, TXT or read online from Scribd

Flag for inappropriate content

Jump to Page

You are on page 1of 2

Search inside document

VENDOR RISK ASSESSMENT TEMPLATE

RISK
# RISK ASSESSMENT DESCRIPTION NOTES
RATING

1 Risk Assessment process failure LOW

2 Failure to adhere to privacy laws MEDIUM

3 Customer data security breach HIGH

4 Breakdown of Information Security team N/A

5 Breach of non-disclosure agreements

6 External party access to non-public information

7 Asset management policy breach

8 Non-disclosure / confidentiality breach

9 Systems access breach

10 Building access breach

11 Visitor access issues

12 Identification badge / keyless entry issues

13 Non-public printed material security issues

14 System change procedure issues

15 Routine testing problems

16 Password protection system breakdown

17 Password sharing issues

18 Third-party access breach of non-public data

19 Instant messaging protection issues

20 Incident response plan failure

21 Lack of compliance and ethics training

22 Lack of compliance and ethics policy adherence

23 Inactive user access maintenance problems

24
25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

You might also like

DemoPasswordManager v1.0
Document28 pages
DemoPasswordManager v1.0
Rajesh1146
No ratings yet
Trend Micro Vision One Solution Overview
Document17 pages
Trend Micro Vision One Solution Overview
abbek
No ratings yet
Cybersecurity Threats, Malware Trends, and Strategies
Document30 pages
Cybersecurity Threats, Malware Trends, and Strategies
Ardian Oktadika
100% (1)
Security Information & Event Management Quiz
Document2 pages
Security Information & Event Management Quiz
oviuap
80% (5)
Cybersecurity Threats
Document429 pages
Cybersecurity Threats
denismenendez
80% (5)
OWASP Risk Rating Template Example
Document7 pages
OWASP Risk Rating Template Example
Engr Aliyan
No ratings yet
Supplier Quality/Purchasing Controls Successful Practices
Document23 pages
Supplier Quality/Purchasing Controls Successful Practices
Jessica Christy Sitio
100% (1)
Fundamentals Day08 - Lecture Slides
Document44 pages
Fundamentals Day08 - Lecture Slides
hassan
No ratings yet
Operational Risk Management: A Gateway To Managing The Risk Profile of Your Organization
Document34 pages
Operational Risk Management: A Gateway To Managing The Risk Profile of Your Organization
Tejendrasinh Gohil
No ratings yet
Trustwave Global Security Report
Document110 pages
Trustwave Global Security Report
Don
No ratings yet
Practical Network Scanning
Document316 pages
Practical Network Scanning
Gilibo
No ratings yet
04 Risk Management
Document39 pages
04 Risk Management
Hung Thanh
No ratings yet
Society For Information Management Information Security Trends and Issues
Document49 pages
Society For Information Management Information Security Trends and Issues
ramjet1
100% (1)
State of Cyber Security 2023
Document25 pages
State of Cyber Security 2023
Rushikesh Thombre
100% (1)
Unit 4 Cloud 2019
Document148 pages
Unit 4 Cloud 2019
Nagarajan
No ratings yet
2 - PWC - IT Risk Management With Cobit
Document18 pages
2 - PWC - IT Risk Management With Cobit
Ilya Radchenko
No ratings yet
Accounts Assistant Using Tally Final ACLP
Document180 pages
Accounts Assistant Using Tally Final ACLP
satish rai
No ratings yet
ICT Risk Assessment Impact Score
Document7 pages
ICT Risk Assessment Impact Score
axaz sah
No ratings yet
Rules Which Restrict Access Only To Those Who Need To Know
Document10 pages
Rules Which Restrict Access Only To Those Who Need To Know
clyde bautista
No ratings yet
Prepared by GROUP 6 Landicho, Patricia Llegue, Jana (8.27 X 11.69 In)
Document3 pages
Prepared by GROUP 6 Landicho, Patricia Llegue, Jana (8.27 X 11.69 In)
Magbanua, Jamaica S.
No ratings yet
Cyber Security: Basic - Starting Point
Document14 pages
Cyber Security: Basic - Starting Point
abulfaiziqbal
No ratings yet
CISSP Models Process Frameworks Handout
Document82 pages
CISSP Models Process Frameworks Handout
Ben
No ratings yet
Course Curriculum
Document6 pages
Course Curriculum
balu810
No ratings yet
PP The Three Lines of Defense in Effective Risk Management and Control
Document38 pages
PP The Three Lines of Defense in Effective Risk Management and Control
secori
No ratings yet
TopSpinSec Deception Research Paper OCT 05 16
Document39 pages
TopSpinSec Deception Research Paper OCT 05 16
Carlos Lico
No ratings yet
Guide Practics 5412 $ Xyz#
Document16 pages
Guide Practics 5412 $ Xyz#
Tom Luna
No ratings yet
(Class Note) Module 1 - Introduction To Cybersecurity
Document79 pages
(Class Note) Module 1 - Introduction To Cybersecurity
Yao Xia Li
No ratings yet
Exp 10 2
Document5 pages
Exp 10 2
nikita
No ratings yet
Chapter 1 - Introduction & Overview
Document42 pages
Chapter 1 - Introduction & Overview
Firas Zawaideh
No ratings yet
L02-Business and Technology Threats
Document55 pages
L02-Business and Technology Threats
Aqil Syahmi
No ratings yet
Exp 10 1
Document5 pages
Exp 10 1
nikita
No ratings yet
Chapter 01 - Security Principals
Document18 pages
Chapter 01 - Security Principals
Jaye 99
No ratings yet
Gard+LP+presentation+on+cyber+security +jan+2019 PDF
Document32 pages
Gard+LP+presentation+on+cyber+security +jan+2019 PDF
Rexon dela Cruz
No ratings yet
Test Planning: CSTE Skill Category 4
Document31 pages
Test Planning: CSTE Skill Category 4
api-3733726
No ratings yet
Security Concept - Chapter 6
Document20 pages
Security Concept - Chapter 6
Muhammad AyAz
No ratings yet
Understanding and Addressing Vendor Risk
Document9 pages
Understanding and Addressing Vendor Risk
sashi
No ratings yet
Week 5 Session 1
Document53 pages
Week 5 Session 1
amna zia
No ratings yet
ISO27k ISMS 6.1.2 Information Risk Catalogue 2023
Document3 pages
ISO27k ISMS 6.1.2 Information Risk Catalogue 2023
mywishesfulfilled
No ratings yet
Stora Enso - ERM
Document5 pages
Stora Enso - ERM
Ketan
No ratings yet
Hacken - AuditReport Program
Document10 pages
Hacken - AuditReport Program
Memong Kitty
No ratings yet
CISSP Models Process Frameworks Handout
Document82 pages
CISSP Models Process Frameworks Handout
PremdeepakHulagbali
No ratings yet
Secure Coding - PHP v.1.1
Document137 pages
Secure Coding - PHP v.1.1
Bond James
No ratings yet
Q Final PHD
Document24 pages
Q Final PHD
raushan206
No ratings yet
Anonymized Web Application Penetration Testing Report
Document54 pages
Anonymized Web Application Penetration Testing Report
Santo Rabidas
No ratings yet
CISA Exam Prep Domain 5 - 2019
Document89 pages
CISA Exam Prep Domain 5 - 2019
nhoporeg
No ratings yet
RaihanPatel MinorProject1 MScDFIS PDF
Document83 pages
RaihanPatel MinorProject1 MScDFIS PDF
Raihan Patel
No ratings yet
IC Vendor Risk Management Audit Framework 10772
Document3 pages
IC Vendor Risk Management Audit Framework 10772
fauzeeyah adepoju
No ratings yet
Operating System Security
Document20 pages
Operating System Security
nat-tamail.ru
No ratings yet
Roop Kumar Introduction To ERM - IIRM PGDM 22-24-3 PDF
Document29 pages
Roop Kumar Introduction To ERM - IIRM PGDM 22-24-3 PDF
Whatsapp Message
No ratings yet
Blue Isometric Elements & Mockups Technology in Education Technology Presentation
Document22 pages
Blue Isometric Elements & Mockups Technology in Education Technology Presentation
Baynbayr baynaa
No ratings yet
Cyber Evidence List - Nov-2
Document1 page
Cyber Evidence List - Nov-2
deeptanwar1997
No ratings yet
CISSPcrashcourseday
Document159 pages
CISSPcrashcourseday
Anonymous gqSpNAmlW
100% (2)
ACS Penetration Testing Report v1
Document15 pages
ACS Penetration Testing Report v1
sohaib siddique
No ratings yet
The State of Privacy 2023
Document42 pages
The State of Privacy 2023
ttestxyz
No ratings yet
Exp 10
Document5 pages
Exp 10
nikita
No ratings yet
Information Systems Security: Presented by Dr. Mohamed Marie
Document7 pages
Information Systems Security: Presented by Dr. Mohamed Marie
Ali Mahmood
No ratings yet
Information Systems Security: Presented by Dr. Mohamed Marie
Document7 pages
Information Systems Security: Presented by Dr. Mohamed Marie
Ali Mahmood
No ratings yet
Lecture 2 - Risk Analysis
Document31 pages
Lecture 2 - Risk Analysis
lavanya.puri14
No ratings yet
Who Has The Ball in (Cyber - IT - Information) Security?
Document40 pages
Who Has The Ball in (Cyber - IT - Information) Security?
Indumati Yadav
No ratings yet
The SSCP Prep Guide: Mastering the Seven Key Areas of System Security
From Everand
The SSCP Prep Guide: Mastering the Seven Key Areas of System Security
Debra S. Isaac
No ratings yet
Trojans, Worms, and Spyware: A Computer Security Professional's Guide to Malicious Code
From Everand
Trojans, Worms, and Spyware: A Computer Security Professional's Guide to Malicious Code
Michael Erbschloe
Rating: 4 out of 5 stars
4/5 (1)
ASI Auditor Accreditation Procedure v1.2 FINAL 19february2019 PDF
Document25 pages
ASI Auditor Accreditation Procedure v1.2 FINAL 19february2019 PDF
Jessica Christy Sitio
No ratings yet
Auditing Guide: Annex 2 - Aide Mémoire
Document51 pages
Auditing Guide: Annex 2 - Aide Mémoire
Jessica Christy Sitio
No ratings yet
Any Year Calendar2
Document3 pages
Any Year Calendar2
sri
No ratings yet