Cybersecurity policies and practices
By taking this questionnaire, an organization can:
- Assess their Cybersecurity policies against best practices
- Improve their Cybersecurity initiatives
- Share reports with investors, customers and other stakeholders
(Free)
TSP Cybersecurity questionnaire was designed, and is regularly updated, through a consensus building process that involves the many stakeholders to make a supply chain cybersecurity program successful.
How were questions and practices identified and selected?
TSP partners with industry stakeholders and with subject matter experts in best practice focus areas to develop and update content.
Over the years, a body of knowledge accumulates through informal conversations, conferences, presentations of trial-and-learn experiments, etc. This website was designed to capture this raw knowledge through an informal wiki-style Knowledge Sharing section. Through the raw knowledge, patterns emerge.
Cybersecurity practices are selected through a transparent and inclusive content governance process and are updated regularly.
TSP’s mission is to provide universal access to supplier relationship management best practices. As such questionnaires and knowledge bases directly developed through TSP content governance process are made available under a Creative Commons License (i.e. CC BY-SA to be exact).
How does it work?
For suppliers
Assess
Assess maturity relative to best practices and benchmark with industry peers.
Improve
Select improvement actions on a value-ranked basis and see impact on scores & benchmark position.
Report
Share scorecard with clients at your discretion. Use outputs for in/external reports.
For procurement & supply chain relationship managers
Meet your suppliers where they are.
You have identified your organization's 80% spend, or made a list of tier 1 suppliers by risk and/or impact. It is time to send them an initial survey.
Suppliers will be at different steps in their maturity journey. TSP was specifically designed for:
- Mature organizations to report their progress against standardized questions.
- Progressing organizations to find the tools to track and improve data & metrics.
- Starting organizations to learn, assess their practices against peers and create a baseline to improve upon.
Track engagement and chart responses
1. Invite suppliers and colleagues
You can invite as many suppliers as you wish. Suppliers that have already answered the assessment previously can share their response with you with a single click.
You can invite as many colleagues as you want to see your organization dashboard. If the need arises to connect your organization's Active Directory and Single Sign-On (SSO) login workflow with TSP, our support team can configure this so you have full control of the authentication workflow for your users.
2. Track engagement
TSP sends automatic reminders to suppliers that haven't completed the assessment within the allocated time period.
You can track individual supplier activity as well as aggregate of your suppliers completion rate vs. last year vs. your industry peers.
3. Start a dialogue around cybersecurity with suppliers
TSP gives you insight in suppliers that have set cybersecurity targets and/or have improvement plans in place, segmented by industry. Furthermore through membership into an Alliance and TSP unique aggregated anonymous datasets you will be able to compare how your suppliers stack against suppliers in the Alliance as a whole.
At every step, suppliers are encouraged to share practices they implement and targets they set for themselves. TSP is uniquely designed to capture knowledge and share it within a broader community.
At every step, we have real knowledgeable humans to support you. For any questions, comments or general feedback, always feel free to contact us.
Contact us“If you want to go fast, go alone. If you want to go far, go together.”