Under active development — Content is continuously updated and improved

CC9.2—Vendor Risk Management

>Control Description

Assess and manage risks associated with vendors and third-party business partners.

>Cross-Framework Mappings

NIST CSF 2.0

via AICPA TSC mapping structure

ISO 27001:2022

via AICPA TSC mapping structure

NIST SP 800-53 r5

via AICPA TSC mapping structure

SCF

via AICPA TSC mapping structure

Ask AI

Configure your API key to use AI features.