The Information Security Office (ISO) provides a Vendor Security Assessment (VSA) Service for Vendor contracts. This service evaluates Vendor access to UC systems or data classified at Protection Level P3 or P4. Its purpose is to ensure that the Vendor’s security plan effectively safeguards UC systems and data. After the assessment, a report will be provided to the requesting party, including an overall risk rating, identified risks, and recommendations. By conducting these assessments, Units can better manage security risks and make informed decisions regarding Vendor contracts.
Service details
| Service Owner | Berkeley IT | Information Security Office (ISO) |
Service category
Quick Links
Contact
- Phone:(510) 664-9000 option 1, 1
- Email:
- Support hours:Monday-Friday, 9 a.m.-5 p.m. except University holidays and scheduled maintenance.