Welcome to our FREE Third Party Assessment
This section initiates your assessment, presenting a selection of specialized questions derived from diverse IT/OT frameworks. Once completed, please note that no data is saved from your responses, ensuring your privacy. This preliminary sample of our exclusive assessments is designed to provide you with insights into critical areas. Should you wish to delve deeper and receive tailored recommendations, we encourage you to engage VCSPro for a comprehensive analysis.
1. Do you have a centralized inventory of all critical 3rd parties and contact info ?
2. Does your 3rd party inventory contain configuration details ? (ie, vendor, location)
3. Do 3rd parties supply patch currency reports for all the critical assets when requested ?
4. Are Antivirus currency reports current available from 3rd parties ?
5. Are there backups of 3rd party assets stored offsite for all critical assets ?
6. Do you have a 3rd party specific security policy or appendices in operational policies ?
7. Do you have an agreed upon hardware/software list for 3rd parties ?
8. Does critical infrastructure have two way connectivity to the internet ?
9. Do you have a single standard documented change control system ?
10. Does procurement have signed contracts adhering to your security policy ?
11. Have 3rd party auditors tested your compliance with your security policy ?
12. Have security compliance audits been completed on your 3rd party suppliers ?
