Which of the following is MOST helpful to an information security manager when determining service level requirements for an outsourced application?
Which of the following is MOST helpful to an information security manager when determining service level requirements for an outsourced application?
The supplier's business continuity plan (BCP) is most helpful when determining service level requirements for an outsourced application. The BCP provides detailed information on how the supplier will continue to deliver services during disruptions, including disasters and outages, which directly impacts the continuity and availability of the service. This information is crucial for setting appropriate and realistic service level requirements to ensure that the outsourced application meets the necessary performance and reliability standards under various conditions.
A - This plan outlines how the supplier will maintain operations during disruptions (e.g., disasters, outages). It directly impacts service availability and continuity. Understanding the supplier’s BCP helps set appropriate service level requirements.