The Shared Assessments Program has been setting the standard in third party risk management since 2005, when the Big Four and six global banks collaborated to form Shared Assessments to address the inefficiencies surrounding vendor risk management. Using a robust compilation of questions, the SIG gathers pertinent information to determine how security risks are managed across a spectrum of 18 risk control areas, or “domains”, within a service provider’s environment. It was developed to enable a service provider to compile complete information about these risk domains in one document.
This questionnaires for the 2018 and 2019 SIG questionnaires are available. Lite, core, and full question sets are included in the question pack. A single import file is used for all questions, but each question is tagged to its corresponding question set in the "Questionnaire" field.
This content is available in English only.
Control standard mappings are not available for this Question Library.
The source of this content comes from the Shared Assessments website.
The Shared Assessments Standard Information Gathering Template (SIG) version 2018 Question Library Content is available with the use of the RSA Archer Policy Program Management, RSA Archer Controls Monitoring Program Management, and/or RSA Archer Authorization and Assessment use cases. No additional license is required.
For More Information
To learn more about the Shared Assessments Standard Information Gathering Template (SIG) version 2018 Question Library Content:
- Review the RSA Archer Content Import Tip Sheet for instructions on how to import content; and
- Download the Shared Assessments Standard Information Gathering Template (SIG) 2018 Question Library Content Package.
- Download the Shared Assessments Standard Information Gathering Template (SIG) 2019 Question Library Content Package.
For Additional Support
To learn more about this content, please contact your Account Rep for additional details. To obtain this content or for technical support questions, please open a support case or contact RSA Archer at email@example.com for more information.