The Risk Ledger platform is based on our standardised, security-led Supplier Assessment Framework (SAF). This knowledge base is designed to explain each risk control and give guidance about how to properly implement it.
This domain covers how your organisation maintains compliance with key security certifications.
This domain covers compliance with data protection legislation.
This domain covers how your security governance is designed, implemented, and maintained.
This domain covers the security controls you have implemented to mitigate security risk from your employees.
This domain covers the security controls you have implemented to maintain the health of your IT systems and processes.
This domain covers the security controls you have implemented during the development of your IT applications.
This domain covers the security controls you have implemented to maintain the security and integrity of your corporate network and any cloud infrastructure.
This domain covers the physical security controls you have implemented to protect your organisation's physical premises.
This domain covers the processes and plans you have in place to ensure a quick recovery if a failure occurs.
This domain covers the processes and controls you have in place to ensure the security risk from your supply chain is mitigated.
This domain covers the governance and controls you have implemented within your organisation to protect your organisation from risks not linked to technology or financial crime.
This domain covers the financial controls you have implemented to prevent, identify, and respond to evidence of financial crime.