40 Question Guide


Every organization--and every vendor--is unique. Thus, many circumstances will warrant the creation of customized security questionnaires. We suggest using industry-accepted best practices as a starting point for your assessment.
Our goal with this guide is to help you get started with the creation of your vendor security risk assessment. We’ll explain:

  • The top three frameworks you should be examining
  • Questions you may want to consider (and why you should potentially consider them)
  • How to make more strategic cyber risk management decisions with the resources you have today.

Thank you for your interest. Your report is ready for downloading below.


Are you involved in security functions within your organization? 

 By checking the box, I consent to sharing this information with BitSight Technologies, Inc., which is headquartered in the US, as well as receiving email communications and phone calls for sales and marketing purposes. I also understand that I may unsubscribe at any time. For more information on our privacy practices, please see our privacy policy.