December 23, 2021 by Admin
Which of the following is the MOST effective way for an organization to ensure its third-party service providers are aware of information security requirements and expectations?
- Auditing the service delivery of third-party providers
- Including information security clauses within contracts
- Providing information security training to third-party personnel
- Requiring third parties to sign confidentiality agreements