If you are in the financial industry, the FISAP assessment
documents
released this week are worth reviewing. FISAP is a process
for
financial institutions to evaluate IT service providers.
Included
below are links to a FISAP FAQ and the assessment documents
themselves.
If you like the FISAP documents and have something to add,
please
reach out to BITS and share your thoughts. For more
information,
visit http://www.bitsinfo.org
/fisap
Kind regards,
Gideon
Gideon T. Rasmussen
CISSP, CISA, CISM, SCSA
Charlotte, NC
gideon infostruct.net
http://www.ussecur
ityawareness.org
ht
tp://groups.yahoo.com/group/gideons-infosec-list
FISAP FAQs
http://www.bitsinfo.org/FISAP/Forms/18SharedAssess
mentsFAQ.pdf
Agreed Upon Procedures
http://ww
w.bitsinfo.org/FISAP/Forms/AUP.pdf (37 pages)
Supplemental Information Gathering
http://ww
w.bitsinfo.org/FISAP/Forms/SIG.pdf (49 pages)
Yahoo! Groups Links
<*> To visit your group on the web, go to:
http://g
roups.yahoo.com/group/CISSP-Discuss/
<*> To unsubscribe from this group, send an email to:
CISSP-Discuss-unsubscribe@yahoogroups.com
<*> Your use of Yahoo! Groups is subject to:
http://docs.yahoo.c
om/info/terms/
|