TPM-04—Third-Party Services

Weight: 10

>Control Description

Mechanisms exist to mitigate the risks associated with third-party access to the organization's Technology Assets, Applications, Services and/or Data (TAASD).

>Control Description

>Cross-Framework Mappings

NIST SP 800-53 r5

NIST CSF 2.0

PCI DSS v4.0.1

CIS Controls v8

SOC 2 TSC

NIST SP 800-171

FedRAMP Rev 5

Canada ITSP 10.171

Australia ISM

EU DORA

Spain ENS

SOC 2 TSC (Detailed)

CIS Controls v8.1 (Detailed)

GovRAMP

ISO 27002:2022

ISO 42001:2023 (Detailed)

NIST SP 800-161

NIST SP 800-171 Rev 3

NIST AI 600-1

Data Privacy Management Principles

CISA CPG

FCA CRM

GLBA (16 CFR 314)

HIPAA Simplification 2013

NY DFS 23 NYCRR 500

Ask AI