The Supplier Security Evaluation (SSE) provides a simple, spreadsheet-based mechanism to assess the information security status of an individual supplier or supplier grouping.

SSE uses the ISF Guidelines for Information Security – a high-level framework comprising the 26 areas of ISF Standard of Good Practice for Information Security (the Standard) and the associated control objectives, to assess the information security arrangements of a supplier.

The tool also probes the relationship between the Acquirer and the Supplier, and the contractual and exit arrangements, providing a complete picture of a Supplier at a particular point in time.

Executive Summary

Supplier Security Evaluation (SSE)

Please fill out the form below to download a complimentary Executive Summary.