Exam SY0-601 topic 1 question 470 discussion

Every time I see “third party” involved it’s SLA

Business to user = MOU. Business to business = SLA

TIME= SLA

SLA is the answer

B. SLA

The company policy requiring third-party suppliers to self-report data breaches within a specific time frame is an example of compliance with an SLA (Service Level Agreement).

>>>B<<<< >>"SLA" (Service Level Agreement) <<< The company policy is complying with the "SLA" (Service Level Agreement) third-party risk management policy. An SLA is a contractual agreement between a company and a third-party supplier that outlines the level of service that the supplier is expected to provide. In this case, the SLA requires the third-party supplier to self-report data breaches within a specific time frame. This helps to ensure that the supplier is meeting the company's security requirements and that any breaches are identified and addressed in a timely manner. The other options (MOU, EOL, and NDA) are not directly related to third-party risk management policies.

-B is correct The company policy requiring third-party suppliers to self-report data breaches within a specific time frame is an example of a third-party risk management policy that complies with an SLA (Service Level Agreement), as shown in option B. An SLA is an agreement between a service provider and a customer that outlines the level of service that will be provided, as well as any specific requirements or expectations. In the context of third-party risk management, an SLA may include specific requirements related to data security, such as the requirement for third-party suppliers to self-report data breaches within a certain time frame.