Uploaded image for project: 'Project Quay'
  1. Project Quay
  2. PROJQUAY-6796

Vendor Risk Assessments/Attestation Report Review

XMLWordPrintable

    • Icon: Story Story
    • Resolution: Unresolved
    • Icon: Major Major
    • None
    • None
    • quay.io
    • False
    • None
    • False
    • 0

      A vendor management program is in place. Components of this program include:
      - Maintaining a list of critical third-party vendors.
      - Requirements for third-party vendors to maintain their own security practices and procedures.
      - Annually reviewing critical third-party attestation reports or performing a vendor risk assessment.

            syahmed@redhat.com Syed Ahmed
            doconnor@redhat.com Dave O'Connor
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated: