Vendor Security Alliance Partners with OneTrust to Launch New Questionnaire Focused on Cybersecurity and Privacy: VSA CORE

SAN FRANCISCO, Oct. 24, 2019 /PRNewswire-PRWeb/ -- Today, the Vendor Security Alliance (VSA), a collection of technology enabled companies focused on reducing vendor cybersecurity risk, is announcing the release of a new questionnaire: The VSA CORE

Starting today, Vendor Security Alliance (VSA) will provide two free questionnaires, the VSA FULL and VSA CORE, available for download from VendorSecurityAlliance.org, Whistic.com and vendorpedia.com.

• VSA FULL: This classic VSA questionnaire is focused deeply on vendor security and provides an in-depth cybersecurity vendor assessment. It is updated each year to reflect technology changes and the cybersecurity threat landscape.
• VSA CORE: This new abbreviated VSA questionnaire is comprised of the most critical questions on vendor security and data privacy practices.

The VSA CORE for Third-Party Risk includes US Privacy (data breach notification and new California data privacy law (CCPA)) and EU privacy (General Data Protection Regulation GDPR)) requirements.

The streamlined questionnaire was created to reduce the number of cybersecurity questions required to assess appropriate operational cybersecurity controls and provides key questions to assess prospective vendors ability to protect your data.

To assist with widespread adoption of the new questionnaire, OneTrust Vendorpedia hosts the free edition of the VSA CORE, which is available to both members and non-members of the VSA at no cost. OneTrust subscribers will also gain access to the VSA CORE as part of their subscription.

"We are seeing a merging of Cybersecurity and Data Privacy. With the impacts of the European Union General Data Protection Regulation (GDPR) spreading globally, and the upcoming California Consumer Protection Act (CCPA) about to go into effect, we believe the industry needs a lightweight but comprehensive free questionnaire to evaluate their vendors to ensure data privacy compliance"; said Dr. Ken Baylor, President of the Vendor Security Alliance, who also serves as the Chief Information Security Officer and Group Data Protection Officer for Voyager Innovations and PayMaya Philippines.

"OneTrust Vendorpedia's partnership with the VSA comes at a unique time when security and privacy go hand in hand," said Kabir Barday, OneTrust CEO and Fellow of Information Privacy (FIP). "The Free OneTrust Vendorpedia Tool: VSA CORE for Third-Party Risk adds value to the OneTrust customer base and we're pleased to continue growing this partnership."

'With new security and privacy laws and the evermore powerful hacking tools, it's vital to assess the security and privacy protections of all partners and vendors in your data chain. VSA CORE and VSA FULL provide a non-threatening and highly accessible tool to pinpoint weaknesses in your data chain and to replace security assumptions with justifiable facts.'; said Karim Adib, Senior Director of Science and Engineering at RapportBoost.AI

"The VSA makes quality vendor questionnaires available to the public at no cost, allowing vendors with weak security practices to be detected early. Updated annually and leveraged by tens of thousands of companies each year, the VSA questionnaire streamlines vendor security compliance. The VSA has always enabled security teams to thoroughly assess their third-party vendors' security posture with consistency and ease. The release of the VSA CORE seeks to lighten the questionnaire load while better aligning the balance between security and privacy, to give assessors the right focus on vendor trust," Said Gary Miller, Head of Information Security at TaskUs

Both the VSA CORE and VSA FULL are available for download at http://www.vendorsecurityalliance.org. The hosted version of VSA CORE is available at vendorpedia.com, and the hosted version of VSA FULL is available at Whistic.com.

For additional information and access to the free OneTrust Vendorpedia Tool: VSA CORE for Third-Party Risk, visit http://www.vendorsecurityalliance.org and vendorpedia.com.

About Vendor Security Alliance
The Vendor Security Alliance (VSA) is a coalition of companies committed to improving Internet security. Every day, industries across the globe depend on each other to embrace sound cybersecurity practices: yet in the past companies have not had a standardized way to assess the security of their peers. The VSA was formed to solve these issues and streamline vendor security compliance. In collaboration with the VSA, top security experts and experienced compliance officers will release a yearly questionnaire to benchmark their risk. Companies can leverage this questionnaire to qualify vendors and ensure the appropriate controls are in place to improve security for everyone. For more information visit https://www.vendorsecurityalliance.org.

About OneTrust Vendorpedia
OneTrust Vendorpedia™ is the largest and most widely used technology platform to operationalize third party risk, security, and privacy management. More than 500 customers of use OneTrust Vendorpedia, which is powered by 50 awarded patents, to offer the most depth and breadth of any third-party risk, security, and privacy solution in the market. OneTrust Vendorpedia is purpose-built software designed to help organizations manage vendor relationships with confidence and integrates seamlessly with the entire OneTrust platform, including – OneTrust Privacy, OneTrust DataGuidance™, OneTrust PreferenceChoice™, and OneTrust GRC. To learn more, visit Vendorpedia.com or connect on LinkedIn, Twitter and Facebook.

SOURCE Vendor Security Alliance

Related Links

https://www.vendorsecurityalliance.org