Information Security Questionnaire definition

Information Security Questionnaire means the Authority’s set of questions used to audit and on an ongoing basis assure the Contractor’s compliance with the Authority’s Security Requirements.

Split View

AI-Powered Contracts

Draft, Review & Redline at the Speed of AI

Get StartedBook a Demo

Information Security Questionnaire means the Buyer’s set of questions used to audit and on an ongoing basis assure the Supplier’s compliance with the Buyer’s Security Requirements.

Information Security Questionnaire. A questionnaire for completion by the Organisation about its information security arrangements and processes, in a format requested by HESA Services.

Examples of Information Security Questionnaire in a sentence

• The Contractor shall provide the completed Information Security Questionnaire to the Authority within one calendar month from the date of request.

• The Supplier shall provide the completed Information Security Questionnaire to the Buyer within one calendar month from the date of request.

More Definitions of Information Security Questionnaire

Information Security Questionnaire means the Authority’s set of questions used to audit and on an ongoing basis assure the Contrac- tor’s compliance with the Authority’s Security Re- quirements. c.

Information Security Questionnaire means the Buyer’s set of questions used to audit and on an ongoing basis assure the Supplier’s compliance with the Buyer’s Security Requirements, provided however, in the event there are no material changes to the Supplier’s environment, the Buyer may rely on a previously completed questionnaire or the Supplier shall provide a Cloud Security Alliance questionnaire or a Standard Information Gathering Questionnaire (SIG). “Information Security Risk” shall mean any risk that might adversely affect Information Security including, but not limited to, a Breach of Security. ISAE 3402 shall mean the International Standard on Assurance Engagements No. 3402 (ISAE) as most recently published by the International Auditing and Assurance Standards Board or its successor entity (“IAASB”) or the relevant successor or replacement standard which is formally recommended by the IAASB. “ISO/IEC 27001, ISO/IEC 27002 and ISO 22301 shall mean: (a) ISO/IEC 27001; (b) ISO/IEC 27002/IEC; and (c) ISO 22301, in each case as most recently published by the International Organization for Standardization or its successor entity (the “ISO”) or the relevant successor or replacement information security standard which is formally recommended by the ISO. “NCSC” shall mean the National Cyber Security Centre or its successor entity (where applicable). “Penetration Test” shall mean a simulated attack on any Buyer Assets, the Buyer’s Systems Environment (or any part thereof) or the Supplier’s Systems Environment (or any part thereof). “Risk Profile” shall mean a description of any set of risks. The set of risks can contain those that relate to a whole organisation, part of an organisation or as otherwise applicable. “Security Policies” shall mean the Buyer’s Security Policies published by the Buyer from time to time and shall include any successor, replacement or additional Security Policies. The Security Policies are set out in Annex A to this Schedule 8. “Security Policies and Standards” shall mean the Security Policies and the Security Standards. “Security Standards” shall mean the Buyer’s Security Standards published by the Buyer from time to time and shall include any successor, replacement or additional Security Standards. The Security Standards are set out in Annex B to this Schedule 8. “Security Test” shall include, but not be limited to, Penetration Test, Vulnerability Scan, Availability Test and any other security related test and audit. “SSAE 16” shall mean the Statement on Standards f...

Information Security Questionnaire means the Client’s set of questions used to audit and on an ongoing basis assure the Consultant’s compliance with the Security Policy. The Information Security Questionnaire is the Security Management Plan.

Information Security Questionnaire means the Authority’s set of ques- tions used to audit and on an ongoing basis assure the Contractor’s compli- ance with the Authority’s Security Re- quirements.

Information Security Questionnaire means the Authority’s set of questions used to audit and on an ongoing basis assure the Contractor’s compliance with the Authority’s Security Requirements. “Information shall mean any risk that might Security Risk” adversely affect Information Security including, but not limited to, a Breach of Security. “ISO/IEC 27001, ISO/IEC 27002 d) and ISO 22301 e) shall mean ISO/IEC 27001; ISO/IEC 27002/IEC; and