vsaq

VSAQ is an interactive questionnaire application to assess the security programs of third parties. (by google)
Add to my DEV experience Suggest topics

DISCONTINUED

Suggest alternative
Edit details
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured

Vsaq Alternatives

Similar projects and alternatives to vsaq

  • aws-codedeploy-agent

    20 vsaq VS aws-codedeploy-agent

    Host Agent for AWS CodeDeploy

  • SurveyJS

    Open-Source JSON Form Builder to Create Dynamic Forms Right in Your App. With SurveyJS form UI libraries, you can build and style forms in a fully-integrated drag & drop form builder, render them in your JS app, and store form submission data in any backend, inc. PHP, ASP.NET Core, and Node.js.

    SurveyJS logo
NOTE: The number of mentions on this list indicates mentions on common posts plus user suggested alternatives. Hence, a higher number means a better vsaq alternative or higher similarity.
Suggest an alternative to vsaq

vsaq reviews and mentions

Posts with mentions or reviews of vsaq. We have used some of these posts to build our list of alternatives and similar projects. The last one was on 2021-01-15.
  • Company Self Assessment
    1 project | /r/cybersecurity | 21 May 2023
    I'd look at the SIG, CAIQ or the Google VSAQ.
  • Security Assesment of application/server setup
    1 project | /r/AskNetsec | 12 Dec 2022
    Here’s a little handy guide for 4 domains. Yours would fall under infrastructure security ;) Security Questionnaire
  • Google Vendor Security Assessment Questionnaires
    1 project | news.ycombinator.com | 7 Nov 2021
  • Our Dumb Security Questionnaire
    2 projects | news.ycombinator.com | 15 Jan 2021
    pretty straightforward, but does it scale? and can the answers be captured objectively in order to inform consistent decision making?

    i.e. this is fine for a one shot review, but would be tough to operationalize...

    Plus, keep in mind diagrams can be critical. If you're going to be sharing sensitive data with this vendor you're going to need to know and have documented how that data will flow, where it will persist, etc. Can be a lot easier to capture in a diagram than narrative format.

    There is variety of other FOSS type stuff out there that is useful for anyone that needs more:

    Vendor Security Alliance -- https://www.vendorsecurityalliance.org/downloadQuestionaire (disclaimer: I'm an advisor @VSA)

    CSA CAIQ -- https://cloudsecurityalliance.org/artifacts/consensus-assess...

    SIG --NM, looks like this is closed/member only now, but if you can track it down (SIG Lite/Full, Standard Information Gathering) its ridiculously comprehensive.

    Google VSAQ -- https://github.com/google/vsaq

    As someone who deals with both sides (asking the questions to vendors, and answering them for prospect customers) I can say they mostly all suck pretty hard... and that's probably why there's a whole ecosystem of vendors in this space nowadays.

  • A note from our sponsor - SaaSHub
    www.saashub.com | 2 May 2024
    SaaSHub helps you find the best software and product alternatives Learn more →

Stats

Basic vsaq repo stats
4
812
0.0
over 3 years ago

google/vsaq is an open source project licensed under Apache License 2.0 which is an OSI approved license.

The primary programming language of vsaq is JavaScript.

Popular Comparisons

  1. vsaq VS aws-codedeploy-agent

Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com