Mechanisms exist to control personnel security requirements including security roles and responsibilities for third-party providers.
Control Question
Assessment question for control validation
Does the organization control personnel security requirements including security roles and responsibilities for third-party providers?
Supply Chain Risk Management (SCRM) Tiers
Applicable SCRM tier levels for this control
Core Control Designations
Special designations and baseline inclusions
MAD: TPM-06
ESP Level 1: TPM-06
ESP Level 2: TPM-06
ESP Level 3: TPM-06