This Questionnaire satisfies the "Risk Assessment" document and control process deliverable of the following two regulatory and one Standards entities:
The NIST 7621 CyberSecurity Standards for Small Businesses.
The purpose of this Risk Assessment is to identify control weaknesses in your information technology environment that may lead to unauthorized disclosure and/or destruction of your customers' non-public information. The information that you enter into the questionnaire is also used to populate the two remaining required documents: the CyberSecurity Program and your Company's CyberSecurity Policies & Procedures.
Please answer as many questions as you can. If you don't know the answer to a question, leave it blank. Insurun will follow up with you by phone or email to help you complete the questionnaire.
