More than the title would let to believe, the MVSP allows to provide a minimum security baseline for enterprise-ready products and services. The Minimum refers to the minimalistic security checklist – the absolute minimum cybersecurity B2B software and business process outsourcing suppliers should be able to provide. It contains out of a checklist that lists a number of controls.

Designed with simplicity in mind, the checklist contains only those controls that must, at a minimum, be implemented to ensure a reasonable security posture.

All companies building B2B software or otherwise handling sensitive information under its broadest definition implement are expected to provide the listed controls and are strongly encouraged to go well beyond them in their security programs.