>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

TPM-05.1Security Compromise Notification Agreements

Weight: 9

>Control Description

Mechanisms exist to compel External Service Providers (ESPs) to provide notification of actual or potential compromises in the supply chain that can potentially affect or have adversely affected Technology Assets, Applications and/or Services (TAAS) that the organization utilizes.

>Cross-Framework Mappings

NIST SP 800-53 r5

SR-8
Compare

SOC 2 TSC

CC2.3
Compare
CC9.2
Compare

FedRAMP Rev 5

SR-8
Compare

Canada ITSP 10.171

03.17.02
Compare

Australia ISM

ISM-1576
Compare

SOC 2 TSC (Detailed)

CC2.3-POF12
Compare
CC9.2-POF13
Compare

ISO 27002:2022

5.21
Compare

NIST SP 800-161

SR-8
Compare

NIST SP 800-171 Rev 3

03.17.02
Compare

TISAX

8.3.1
Compare

CISA CPG

1.G
Compare

HIPAA Simplification 2013

§ 164.314(a)(2)(i)(C)
Compare
§ 164.314(b)(2)(iv)
Compare
§ 164.410(a)(1)
Compare
§ 164.410(a)(2)
Compare
§ 164.410(b)
Compare
§ 164.410(c)(2)
Compare

NERC CIP

CIP-013-2 1.2.1
Compare

NY DFS 23 NYCRR 500

500.4(a)(1)
Compare
500.4(a)(2)
Compare
500.4(a)(3)
Compare
500.11(b)(3)
Compare

Ask AI

Configure your API key to use AI features.