The updated SIG (Standardized Information Gathering) questionnaire, which standardizes third-party risk information, is now available to companies in the Whistic Network
Whistic, the leading vendor security network for both buyers and sellers, today announced the release of the Shared Assessments 2023 Standardized Information Gathering (SIG) Questionnaire for users of the Whistic Assess and Whistic Profile product offerings. The 2023 SIG assimilates third-party risk assessments by providing a database of predictable, standardized questions organized by risk control domains, mapping reference and risk control categories.
.@Whistic_Inc is 1st #vendorriskmanagement network to integrate 2023 Shared Assessments SIG Questionnaire. The new SIG assimilates 3rd-party risk assessments w/ standardized @securityassessments w/ risk control domains, mapping reference & ESG standards
“Whistic is a proud partner of Shared Assessments, which has become a trusted source for third party risk assurance,” said Whistic CEO Nick Sorensen. “While there are many significant updates in this year’s release, the new 2023 content maps seamlessly to prior versions of the SIG and to the other leading standardized frameworks supported by Whistic, which makes it easy for the thousands of companies in the Whistic Network with existing questionnaire responses to advance to the 2023 SIG by leveraging our automated mapping functionality.”
Read More: Deloitte: Inflation Won’t Dampen the Excitement of Black Friday and Cyber Monday
The newest version of the SIG includes a new risk domain covering Nth Party Management to assist in targeted scoping of regulations and standards for interconnected suppliers to address the increasing complexities of supply chains. An expanded Privacy Management domain seeks to address the pending California Privacy Rights Act (CPRA) as well as General Data Protection Regulation (GDPR) updates and impending U.S. State Privacy laws.
Whistic is the first vendor security network to integrate the updated questionnaire, which also incorporates standards to measure and improve Environmental, Social, Governance (ESG) performance of a company and its vendors, as ESG becomes increasingly more important to customers, governments and other stakeholders.
Read More: SalesTechStar Interview with Troy Townsend, CEO and Co-Founder at Zitcha
Companies can proactively organize and publish their full security and risk posture with the 2023 SIG as a key component of their Whistic Profile to accelerate sales and build trust with customers. Companies can also use the thousands of Whistic Profiles published in the Vendor Security Network to perform Zero-Touch Assessments™ on vendors, saving weeks or months of assessment turnaround time.