STA-08: Third Party Assessment
Control Family:
PF v1.0 References:
Control Statement
Providers shall assure reasonable information security across their information supply chain by performing an annual review. The review shall include all partners/third party-providers upon which their information supply chain depends on.