New Standard For Third-Party Cybersecurity Assessments

New Standard For Third-Party Cybersecurity Assessments

Posted by ComplianceForge Support on Nov 12, 2024

The release of the Cybersecurity & Data Protection Assessment Standards (CDPAS) is important to the cybersecurity industry.

The CDPAS is a cohesive, consistent set of standards to govern cybersecurity and data protection related Third Party Assessment, Attestation and Certification Services (3PAAC Services). The CDPAS provides performance standards to normalize 3PAAC Services. By following the CDPAS methodology, cybersecurity and data privacy practitioners can improve the currently disjointed approach used to perform assessments of cybersecurity and/or data protection controls.

The CDPAS empowers organizations to develop cybersecurity and data protection assessment strategies tailored to their specific mission and business needs, threats and operational environments. The CDPAS is not “one-size-fits-all.” Instead, the guidance throughout this document should be adopted and tailored to the unique size, resources and risk circumstances of each organization. It can be modified, or augmented, with specific requirements.

You can download the CDPAS from: https://securecontrolsframework.com/content/cdpas.pdf