💼 PR.AT-3: Third-party stakeholders (e.g., suppliers, customers, partners) understand their roles and responsibilities
- ID:
/frameworks/nist-csf-v1.1/pr-at/03
Description​
Empty...
Similar​
- Sections
/frameworks/iso-iec-27001-2013/06/01/01/frameworks/iso-iec-27001-2013/07/02/01/frameworks/iso-iec-27001-2013/07/02/02/frameworks/nist-sp-800-53-r4/ps/07/frameworks/nist-sp-800-53-r4/sa/09/frameworks/nist-sp-800-53-r4/sa/16
- Internal
- ID:
dec-c-5489f193
- ID:
Similar Sections (Take Policies From)​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 ISO/IEC 27001:2013 → 💼 A.6.1.1 Information security roles and responsibilities | no data | ||||
| 💼 ISO/IEC 27001:2013 → 💼 A.7.2.1 Management responsibilities | no data | ||||
| 💼 ISO/IEC 27001:2013 → 💼 A.7.2.2 Information security awareness, education and training | no data | ||||
| 💼 NIST SP 800-53 Revision 4 → 💼 PS-7 THIRD-PARTY PERSONNEL SECURITY | no data | ||||
| 💼 NIST SP 800-53 Revision 4 → 💼 SA-9 EXTERNAL INFORMATION SYSTEM SERVICES | 5 | no data | |||
| 💼 NIST SP 800-53 Revision 4 → 💼 SA-16 DEVELOPER-PROVIDED TRAINING | no data |
Similar Sections (Give Policies To)​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|---|---|---|---|---|
| 💼 NIST CSF v2.0 → 💼 PR.AT-01: Personnel are provided with awareness and training so that they possess the knowledge and skills to perform general tasks with cybersecurity risks in mind | 8 | no data | |||
| 💼 NIST CSF v2.0 → 💼 PR.AT-02: Individuals in specialized roles are provided with awareness and training so that they possess the knowledge and skills to perform relevant tasks with cybersecurity risks in mind | no data |
Sub Sections​
| Section | Sub Sections | Internal Rules | Policies | Flags | Compliance |
|---|