5.20—Addressing information security within supplier agreements

>Control Description

Control 5.20 - Addressing information security within supplier agreements. This control is part of the Organizational Controls theme in ISO 27001:2022 Annex A.

>NIST CSF 2.0 Mappings

GV.OC-03 GV.OC-04 GV.OV-03 GV.SC-01 GV.SC-03 GV.SC-05 GV.SC-06 GV.SC-07 GV.SC-09 GV.SC-10 ID.RA-09 ID.RA-10

Control mappings sourced from NIST OLIR Catalog (public domain).

>Cross-Framework Mappings

Ask AI

Configure your API key to use AI features.

>Control Description

>NIST CSF 2.0 Mappings

>Cross-Framework Mappings

NIST CSF 2.0

SOC 2 TSC

Ask AI