SynergySuite - Third-Party Security Assessment
Introduction
At SynergySuite, we prioritize the security of our systems and the data entrusted to us. We require third parties without SOC 2 audits to complete a Vendor Security Assessment Questionnaire (VSAQ) to protect our environment. This is a standard questionnaire system developed by Google that we host on the synergysuite.com domain.
VSAQ Overview
The VSAQ is a series of questionnaires designed to evaluate your organization’s security practices. It covers four key areas:
- Web Application Security: Assesses your approach to securing web applications.
- Security & Privacy Program: Evaluate your overall security and privacy framework.
- Infrastructure Security: Examines the security of your IT infrastructure.
- Physical & Datacenter Security: Assesses the physical security of your facilities.
Workflow
This workflow is taken almost verbatim from Google’s VSAQ GitHub page. Added some suggestions and clarifications.
- SynergySuite reviewer sends the questionnaire link to the assessment target.
- Please review all four and answer what is appropriate for the services of yours that SynergySuite uses.
- The assessment target completes the questionnaire(s).
- The assessment target clicks the Save button at the bottom of the questionnaire to export the answers.
- The assessment target sends the answers file back to SynergySuite for review.
- Feel free to encrypt your answers if needed.
- SynergySuite reviewer opens the same questionnaire(s) and loads the answers received from the assessment target.
For inquiries or assistance, contact security@synergysuite.com.