IAC-05
Identification & Authentication for Third-Party Technology Assets, Applications and/or Services (TAAS)
Description
Mechanisms exist to identify and authenticate third-party Technology Assets, Applications and/or Services (TAAS).
Control Question
Does the organization identify and authenticate third-party Technology Assets, Applications and/or Services (TAAS)?
Control Metadata
Domain:
Identification & Authentication
Validation Cadence:
Annual
Evidence Request List:
E-IAM-05 E-IAM-06
Framework Mappings
This control maps to the following compliance frameworks
MAS TRM
9.1.8
HKIA GL20
3.13.23.33.4