~4-page information security policy template concerning third-party IT support, maintenance and related services.
IT support professionals, contractors, consultants and outsourcers employed by third-parties but working on behalf of the organisation are subject to the same information security and privacy obligations as its employees. There are additional issues and obligations due to the commercial relationships.
Giving IT system, information services, software and other suppliers, support and maintenance people unfettered access to the organisation's IT systems and data is risky, potentially even reckless, without the appropriate information security controls in place.
Right now is a good time to do this. Don't look back after an incident, wishing you had dealt with it earlier!
Delivered as an editable MS Word document, easily customized for your organization's specific needs.
Third party IT support security policy
Information security policy template on third-party IT support
See also the policies on: