CISOBot - Your AI CISO Assistant

HRS-10

Third-Party Personnel Security

Weight: 10/10

Description

Mechanisms exist to govern third-party personnel by reviewing and monitoring third-party cybersecurity and data protection roles and responsibilities.

Control Question

Does the organization govern third-party personnel by reviewing and monitoring third-party cybersecurity and data protection roles and responsibilities?

Control Metadata

Domain:

Human Resources Security

Validation Cadence:

Annual

Evidence Request List:

E-HRS-16 E-HRS-18 E-HRS-22

Have questions about this control?

Ask CISOBot for implementation guidance and best practices