>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

TPM-05.2Contract Flow-Down Requirements

Weight: 9

>Control Description

Mechanisms exist to ensure cybersecurity and data protection requirements are included in contracts that flow-down to applicable sub-contractors and suppliers.

>Cross-Framework Mappings

NIST SP 800-53 r5

SR-3(3)
Compare

NIST CSF 2.0

GV.OC-03
Compare
GV.SC-02
Compare
GV.SC-05
Compare
GV.SC-06
Compare
GV.SC-10
Compare

SOC 2 TSC

CC2.3
Compare
CC9.2
Compare
P6.4
Compare

CMMC v2.0

AC.L1-B.1.I
Compare
AC.L2-3.1.1
Compare

NIST SP 800-171

3.1.1
Compare

Canada ITSP 10.171

03.16.03.A
Compare
03.16.03.B
Compare
03.16.03.C
Compare
03.17.02
Compare
03.17.03.B
Compare

India DPDPA

8(7)(b)
Compare

India SEBI Guidelines

GV.SC.S3
Compare
GV.SC.S8
Compare

EU DORA

Article 29.2
Compare

UK DEF STAN 05-138

1401.0
Compare

SOC 2 TSC (Detailed)

CC2.3-POF12
Compare
CC9.2-POF1
Compare
CC9.2-POF9
Compare
CC9.2-POF10
Compare
P6.4-POF3
Compare

ISO 27701

6.1.3(h)
Compare

NIST SP 800-161

SR-3(3)
Compare

NIST SP 800-171 Rev 3

03.16.03.a
Compare
03.16.03.b
Compare
03.16.03.c
Compare
03.17.02
Compare
03.17.03.b
Compare

NIST SP 800-171A Rev 3

A.03.16.03.ODP[01]
Compare

TISAX

6.1.1
Compare

Data Privacy Management Principles

10.3
Compare

45 CFR 155.260

155.260(b)(2)(v)
Compare

US Data Privacy Framework

II.7.d
Compare
III.10.a.ii.1
Compare
III.10.a.ii.2
Compare
III.10.a.ii.3
Compare
III.10.a.iii
Compare

CMMC 2.0 Level 1

AC.L1-B.1.I
Compare

HIPAA Simplification 2013

§ 164.308(b)(1)
Compare
§ 164.308(b)(2)
Compare
§ 164.314(a)(2)(i)(B)
Compare
§ 164.314(a)(2)(iii)
Compare
§ 164.502(e)(1)(ii)
Compare
§ 164.504(e)(2)(ii)(D)
Compare

NY DFS 23 NYCRR 500

500.10(a)(1)
Compare
500.11(a)(1)
Compare
500.11(a)(2)
Compare
500.11(b)
Compare
500.11(b)(1)
Compare
500.11(b)(2)
Compare
500.11(b)(3)
Compare
500.11(b)(4)
Compare

Virginia CDPA

59.1-579.B.5
Compare

Ask AI

Configure your API key to use AI features.