Ask HN: Information Security document for an enterprise contract

2 points by sdybskiy ↗ HN
We're in the process negotiating a contract with an enterprise client for a SaaS solution they are looking to implement into their existing technology.

They asked for a document outlining information security. Is there a specific format for completing one of those? Has anyone done one before?

1 comment

[ 3.5 ms ] story [ 25.0 ms ] thread
See if they have a standard questionnaire. If not, propose the BITS AUP SIG (Google it) or the Vendor Security Alliance questionnaire (again, Google it). — VendorTrust.IO