RegScale Announces Support for the Minimum Viable Secure Product (MVSP)

May 23, 2022 | By J. Travis Howerton

The Minimum Viable Secure Product (MVSP) is a minimalistic security checklist for Business to Business (B2B) software and business process outsourcing suppliers. Designed with simplicity in mind, the checklist contains only those controls that must, at a minimum, be implemented to ensure a reasonable security posture. At RegScale, we understand that organizations are looking for simple but effective controls that can be flowed down to vendors to ensure adequate security of business sensitive information. To that end, we are pleased to digitize and support the MVSP controls as a minimum checklist for B2B software products. When combined with our Supply Chain security module, it provides simple but effective controls to improve vendor security for SaaS-based products.

At RegScale, we give organizations easy and free tools to get started with building secure B2B supply chains with support for establishing baselines and conducting related assessments, evidence collection, issues management/performance improvement, and other related workflows. As of May 23, 2022, RegScale has announced that we officially support MVSP as a catalog within our platform with automated tools/wizards for building compliant B2B products. In addition, we have published multiple machine readable formats of MVSP including an Excel spreadsheet, raw JSON, and NIST OSCAL that are available upon request. These artifacts are freely available for others to reuse in their compliance automation programs using machine readable formats.

Schedule a free demo today to learn how RegScale can help you continuously meet your B2B MVSP requirements. If you are ready to start automating your compliance processes for creating and managing MVSP requirements, this demo will also show how you can leverage RegScale to deliver continuous compliance for B2B products. In addition to offering free tools, we have experienced compliance professionals who can assist you in creating robust MVSP compliance artifacts that will help you pass audits with ease. With RegScale, our customers get software with a service to provide a concierge like experience for achieving B2B product security.

Ready to get started?

Choose the path that is right for you! 

Skip the line

My organization doesn’t have GRC tools yet and I am ready to start automating my compliance with continuous monitoring pipelines now. 


My organization already has legacy compliance software, but I want to automate many of the manual processes that feed it.