When to use this
Use this checklist during periodic review of supplier-provided network services.
Related controls
- A.8.21 Security of Network Services
- A.5.22 Monitoring, Review and Change Management of Supplier Services
- Supplier Service Review and Change Log
Review checklist
- Service scope confirmed.
- Security features reviewed.
- Service levels reviewed.
- Outages or service issues reviewed.
- Failover/resilience evidence reviewed.
- Security incidents or notifications reviewed.
- Provider changes reviewed.
- Gaps and compensating controls updated.
- Risk acceptance reviewed where needed.
Review record
| Service | Provider | Review date | SLA met? | Security feature gaps | Incidents/issues | Action owner | Due date |
|---|---|---|---|---|---|---|---|
| TBD | TBD | TBD | Yes/No | TBD | TBD | TBD | TBD |
- Template
- Iso27001
- Technological controls
- Network services
- Supplier security
Note Metadata
Aliases: Network Provider Review Checklist
Source: 90 Templates/Network Service Provider Review Checklist.md
Related Notes
- ISO 27001 A.5.22 - Monitoring, Review and Change Management of Supplier Services
- A.8.21 Audit Evidence Pack
- ISO 27001 A.8.21 - Security of Network Services
- A.8 Technological Controls MOC
- A.8 Technological Controls Implementation Guide
- A.8 Technological Controls Audit Guide
- A.8 Technological Controls Implementation Audit Risk Mapping
- A.8.21 Audit Checklist
- Supplier Service Review and Change Log
- Templates MOC