Proactively share your Security Profile with anyone, at any time. Learn More

Supplier Assessment Framework
Knowledge Base

The Risk Ledger platform is based on our standardised, security-led Supplier Assessment Framework (SAF). This knowledge base is designed to explain each risk control and give guidance about how to properly implement it.

Security Certifications

This domain covers how your organisation maintains compliance with key security certifications.

Domain A
Read more

Data Protection

This domain covers compliance with data protection legislation.

Domain B
Read more

Security Governance

This domain covers how your security governance is designed, implemented, and maintained.

Domain C
Read more

HR Security

This domain covers the security controls you have implemented to mitigate security risk from your employees.

Domain D
Read more

IT Operations

This domain covers the security controls you have implemented to maintain the health of your IT systems and processes.

Domain E
Read more

Software Development

This domain covers the security controls you have implemented during the development of your IT applications.

Domain F
Read more

Network and Cloud Security

This domain covers the security controls you have implemented to maintain the security and integrity of your corporate network and any cloud infrastructure.

Domain G
Read more

Physical Security

This domain covers the physical security controls you have implemented to protect your organisation's physical premises.

Domain H
Read more

Business Resilience

This domain covers the processes and plans you have in place to ensure a quick recovery if a failure occurs.

Domain I
Read more

Supply Chain Management

This domain covers the processes and controls you have in place to ensure the security risk from your supply chain is mitigated.

Domain J
Read more

Financial Risk

This domain covers the financial controls you have implemented to prevent, identify, and respond to evidence of financial risk.

Domain K
Read more

Environmental, Social and Governance

This domain covers how your organisation manages and governs its environmental and social impact.

Domain L
Read more

We are here to help.
See Risk Ledger in action.