As part of the asset management life cycle, a company engages a certified equipment disposal vendor to appropriately recycle and destroy company assets that are no longer in use. As part of the company's vendor due diligence, which of the following would be MOST important to obtain from the vendor?
A) A copy of the vendor's information security policies.
B) A copy of the current audit reports and certifications held by the vendor.
C) A signed NDA that covers all the data contained on the corporate systems.
D) A copy of the procedures used to demonstrate compliance with certification requirements.
Correct Answer:
Verified
Q339: After significant vulnerabilities and misconfigurations were found
Q340: A network engineer is upgrading the network
Q341: Ann, a retiring employee, cleaned out her
Q342: Which of the following attacks can be
Q343: During a recent incident, sensitive data was
Q345: A large industrial system's smart generator monitors
Q346: An organization is struggling to differentiate threats
Q347: The SOC is reviewing processes and procedures
Q348: A newly hired Chief Information Security Officer
Q349: A systems administrator has deployed the latest
Unlock this Answer For Free Now!
View this answer and more for free by performing one of the following actions
Scan the QR code to install the App and get 2 free unlocks
Unlock quizzes for free by uploading documents