ID.AM-03.126

Does your organization document and maintain baselines of expected communication patterns and data flows with third parties?

Explanation

Establishing and maintaining baselines of communication and data flows with third parties helps detect anomalous activities that could indicate security incidents. These baselines should document expected network traffic patterns, data exchange volumes, access requirements, and communication protocols between your organization and each third party. Regular reviews of these baselines against actual traffic can reveal unauthorized changes or potential security breaches. Evidence could include documented communication and data flow diagrams, network traffic baseline reports, third-party connection inventories, or data exchange specifications that clearly outline expected patterns and thresholds for each third-party relationship.

Implementation Example

Maintain baselines of communication and data flows between the organization and third parties

ID: ID.AM-03.126

Context

Function: ID: IDENTIFY
Category: ID.AM: Asset Management
Sub-Category: Representations of the organization's authorized network communication and internal and external network data flows are maintained

ResponseHub is the product I wish I had when I was a CTO

Previously I was co-founder and CTO of Progression, a VC backed HR-tech startup used by some of the biggest names in tech.

As our sales grew, security questionnaires quickly became one of my biggest pain-points. They were confusing, hard to delegate and arrived like London busses - 3 at a time!

I'm building ResponseHub so that other teams don't have to go through this. Leave the security questionnaires to us so you can get back to closing deals, shipping product and building your team.

Neil Cameron

Founder, ResponseHub