10 Sample SQ Questions

1. What security certifications and standards do you adhere to?‍

2. How do you handle data encryption in transit and at rest?

3. Can you provide details on your incident response plan?

4. How often do you conduct vulnerability assessments?‍

5. What are your access control policies?

6. How do you ensure the security of third-party vendors and subcontractors?

7. What are your policies regarding data retention and deletion?

8. How do you manage and secure endpoints and devices?

9. Please provide an example of a past security incident that impacted customers and how it was resolved.‍

10. What training and awareness programs are in place for your employees?