Policy for Third-party Information and Communication Technology (ICT) Risk Management

Policy for Third-party Information and Communication Technology (ICT) Risk Management

Resource date: 04 Oct 2024

Author: ITSO

Publisher: UNFPA PD

This policy describes principles and rules for standard and critical third parties providing digital services, and describes contract obligations based on risks, establishing a shared responsibility model for managing them. The policy aims to: as per their classification, provide ICT risk evaluation rules for standard and critical providers of digital services; establish contract obligations based on evaluated risks for providers; and describe a shared responsibility model for managing providers.

Policy for Third-party Information and Communication Technology (ICT) Risk Management
EN

We use cookies and other identifiers to help improve your online experience. By using our website you agree to this, see our cookie policy

X